Forum Discussion
nikhilmbass
Altocumulus
AltocumulusIrule for restricting access
Hello Members, I have an application hosted on the F5, which also has an I-rule redirect policy attached to it. https://domain.com redirects to https://domain.com/admin/login.jsp This is accesssib...
Hello, you should be able to do this either with iRule or with LTM policy.
F5 recommends using options available in standard configurations / GUI / traffic profiles over iRule syntax where possible, as they typically perform faster.In your case however using data group lists might be easier to mantain. One IP type data group to list restricted networks, and one string type data group to list restricted URI's.
if { class match [HTTP::path] ends_with restricted_uri_class && class match [IP::client_Addr] equals restricted_ip_class } { reject }
Ruby69
Nimbostratus
Nimbostratus
nikhilmbass wrote:Hello Members,
I have an application hosted on the F5, which also has an I-rule redirect policy attached to it.
https://domain.com redirects to https://domain.com/admin/login.jsp
This is accesssible over both public and pvt.
We have a new requirement, where we need to restrict access to just the below application URL path to only private networks.
https://domain.com/admin/tools/index.html
Can this be acheived and will it cause any compatibility issues with the existing above IRule redirect ??
In your case however using data group lists might be easier to mantain. One IP type data group to list restricted networks, and one string type data group to list restricted URI's. MyMercy