Forum Discussion

Nimbostratus

Dec 18, 2012

iRule to block blank username/password

Newbie to iRules here so please go easy. I have been assigned a project to work with one of our applications that now wants to load balance thru our F5 (Gtm WIP and LTM VIP), but they als...

Nimbostratus

Dec 18, 2012

Shane - With what you've given us, I can't really tell what you're doing. If you're using HTTP Basic Auth it could be as simple as -

You basically have to parse the username and PW, and figure out when null values come in, and then either drop the request or reject it.

when HTTP_REQUEST {

log local0. "[IP::client_addr]:[TCP::client_port]: User-Agent: [string tolower [HTTP::header "User-Agent"]] requested [HTTP::host][HTTP::uri]"

if { [string tolower [HTTP::username]] eq ""} {

log local0. "[IP::client_addr]:[TCP::client_port]: Rejected request"

reject

}

FYI - this is just an example off the top of my head. Haven't even checked syntax.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to block blank username/password

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

Clone/export/import API Protection Profile

UCS file migration on differing OS versions

simultaneous disabling / enabling of all LTM objects

F5 VE WAF FINE TUNING

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Logging/Blocking possible prompt injection

Require username and password for virtual server

AppWorld Berlin iRules Contest!

MS Exchange ProxyNotShell block implemented via iRules

Unable to login on F5 GUI using default admin/admin username & password.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS