limit the possibility of doing POST's

Question

I want to limit the possibility of doing http POSTs to a set of know machines. All public machines must be able to do get's on the same HTTP server. 
&nbsp;  
&nbsp; irules are new to me so some help will be appiciated 
&nbsp;  
&nbsp; if {[HTTP::method] eq "POST"}  
&nbsp; if NOT { check is server is known (on IP/name) } 
&nbsp;     {  
&nbsp;          log event 
&nbsp;          reject request 
&nbsp;     } 
&nbsp;  
&nbsp; Can someone help me get started ? 
&nbsp;  
&nbsp; thanks 
&nbsp;  
&nbsp; K 
&nbsp;  
&nbsp;

hoolio · Answer

You can add the client or server IP addresses to a datagroup (class) of type 'address' and then use the matchclass command to evaluate the address against the class.  The matchclass wiki page has examples: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/matchclass 
&nbsp;  
&nbsp; To log from an iRule you can use the log command: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/log 
&nbsp;  
&nbsp; To reject a connection, you can use reject: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/reject 
&nbsp;  
&nbsp; Aaron

Forum Discussion

limit the possibility of doing POST's

Recent Discussions

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Submenus missing in ASM Security Tab

XC Bot defense question

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

NetScaler to F5 Migration

Related Content

iRule Security 101 - #08 - Limiting POST Data

Introduction to F5 Distributed Cloud Console Rate Limiting Feature

HTTP POST redirect preserving POST data

HTTP Session Limit

SSL forward proxy on VE Lab License possible?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS