Forum Discussion

Nimbostratus

Dec 18, 2024

Irule using a data group to bypass header injection

Trying to do a basic irule that looks at a data group and bypasses the header injection based on the data group uris. Been messing with the below but getting multiple errors when adding the top lines...

Admin

Dec 31, 2024

Hi jcarpenter82

You are close, but missing a closing bracket on the first if statement, and you want return, not exit there. I think this is what you're after:

when HTTP_REQUEST {
    if { !([class match -- [string tolower [HTTP::path]] starts_with uribypass] || [HTTP::header exists "test-Proxied"]) } {
        HTTP::uri "/test[HTTP::uri]"
        HTTP::header insert test-Proxied 1
    }
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Irule using a data group to bypass header injection

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Managing iRules configuration

Related Content

LLM Prompt Injection Detection & Enforcement

Logging/Blocking possible prompt injection

Host header injection iRule

WAF evasion techniques for Command Injection

Header injection rule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS