For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Joe_Pipitone's avatar
Joe_Pipitone
Icon for Nimbostratus rankNimbostratus
May 05, 2015

iRule - HTTP::is_redirect failing

We have used this iRule for many years to block PDFs from being accessed directly, unless a user logs in and comes from an allowed domain. After upgrading from 10.2.4 to 11.2.1 and then to 11.6, th...
application delivery
blocking
devops
irule
iRules
nitass's avatar
nitass
Icon for Employee rankEmployee
May 06, 2015

the redirection back to the website's home page does not occur - it allows the user to download the PDFs.

does request come with referer header? if it does not exist or null, it will be allowed (to download pdf), won't it?

 if { $refer_host == "" || [matchclass $refer_host contains referer_allowed_hosts] } {
    return
 }

by the way, since you are running 11.6.0, you should replace global variable and matchclass with static global variable and class command.

static

https://devcentral.f5.com/wiki/iRules.static.ashx

class

https://devcentral.f5.com/wiki/iRules.class.ashx