Hi, I am looking for help creating an IRULE for the following conditions: Allow access to two URIs within the policy to a specific group of IPs.Disallow access to these URIs to all other IPs. I tried creating a traffic policy for this but was unsuccessful. Thanks Vered

Forum Discussion

veredgf

Nimbostratus

Feb 04, 2020

limit IP access to certain URIs

Hi,

I am looking for help creating an IRULE for the following conditions:

Allow access to two URIs within the policy to a specific group of IPs.
Disallow access to these URIs to all other IPs.

I tried creating a traffic policy for this but was unsuccessful.

Thanks

Vered

Altocumulus

it will be look like there:

when HTTP_REQUEST {
	if { [ class match [ string tolower [HTTP::uri] ] starts_with dg_uri ] and not ( [class match IP::client_addr] equals private_net] ) } {  
		HTTP::respond 302 noserver Location "http://[HTTP::host]/errorpage.html"
	}
}

dg_uri is data group list with your URIs (type string)

private_net is data group list with your IPs/subnets (type address)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

limit IP access to certain URIs

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

How to limit some snmp mib access

Rate Limiting based on ACCESS TOKEN (OAuth 2.0)

OWASP Tactical Access Defense Series: Unrestricted Resource Consumption

Rate Limiting SSL VPN User Traffic

APM TCP connection limit K38157145

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS