Forum Discussion

Nimbostratus

Nov 11, 2009

limit the possibility of doing POST's

I want to limit the possibility of doing http POSTs to a set of know machines. All public machines must be able to do get's on the same HTTP server. irules are new to me so some help wi...

Cirrostratus

Nov 11, 2009

You can add the client or server IP addresses to a datagroup (class) of type 'address' and then use the matchclass command to evaluate the address against the class. The matchclass wiki page has examples:

http://devcentral.f5.com/wiki/default.aspx/iRules/matchclass

To log from an iRule you can use the log command:

http://devcentral.f5.com/wiki/default.aspx/iRules/log

To reject a connection, you can use reject:

http://devcentral.f5.com/wiki/default.aspx/iRules/reject

Aaron

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

limit the possibility of doing POST's

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

How can I get started with iCall

Checking for X-Forwarded-For against an Address Data-Group

Related Content

Post-Quantum Cryptography: Building Resilience Against Tomorrow’s Threats

Post-Quantum Cryptography, OpenSSH, & s1ngularity supply chain attack

HTTP/1.1’s Limitations - and How F5 Has You Covered

F5 Distributed Cloud (XC) Custom Routes: Capabilities, Limitations, and Key Design Considerations

iRule Security 101 - #08 - Limiting POST Data

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS