irule issue

Question

guys is this irule correct?
if i need to block windows/linux access to specific sni on server that has 4 applicaions.
so should i use when http_request event after SERVERSSL_CLIENTHELLO_SEND  ???&nbsp;
when CLIENTSSL_HANDSHAKE {
    if { [SSL::extensions exists -type 0] } then {
        set tls_sni_extension [SSL::extensions -type 0]
    } else {
        set tls_sni_extension ""
    }
}
when SERVERSSL_CLIENTHELLO_SEND {
    if { $tls_sni_extension ne "" } then {
        SSL::extensions insert $tls_sni_extension
    }
}&nbsp;
when HTTP_REQUEST {
if { $tls_sni_extension equals "domain_for_mobile_application"    and    ([HTTP::header "User-Agent"] contains "Windows" or  [HTTP::header "User-Agent"] contains "Linux" or  [HTTP::header "User-Agent"] contains "Macintosh") } 
{
    drop 
    } }&nbsp;

or should i use that
when HTTP_REQUEST {
if {  ([string tolower [HTTP::uri]] starts_with "domain_for_mobile_application")  and    ([HTTP::header "User-Agent"] contains "Windows" or  [HTTP::header "User-Agent"] contains "Linux" or  [HTTP::header "User-Agent"] contains "Macintosh") } 
{
    drop 
    } }&nbsp;

only1masterbla1 · Answer

I would prefer second option. To get domain name, you would parse [HTTP::host] and for path or parameters, you would use [HTTP::uri].&nbsp;

Forum Discussion

irule issue

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Irule Example Issue

Hey DeepSeek, can you write iRules?

Regex issue

iRules Style Guide

New iOS F5 Access version (3.1.0) issues

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS