For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Greg_Haywood_10's avatar
Greg_Haywood_10
Icon for Nimbostratus rankNimbostratus
Oct 12, 2005

newbie case sensitive question

I am attempting to create rules for a site that has loads of .asp scroipts in the root directory (I know, not created by me) These scripts have mixed case ind is basicly a nightmare.   I have no ex...
application delivery
dev
devops
iRules
v4
Greg_Haywood_10's avatar
Greg_Haywood_10
Icon for Nimbostratus rankNimbostratus
Oct 17, 2005
Thanks for the reply,

 

We are using the F5 as an application layer filter to check requested URLs are authorised to be served from the web server.

 

 

One area of possibe problems we are attempting to protect is the possibility a developer may have left a test script, default scripts (or something) on a server and we want to make sure F5 only allows page requests to the web servers that have been approved should be allowed through.

 

We have several web servers and many developers.

 

 

Usually I try to name specific scripts that are allowd to run, but the currect web server has too many and I feel there would be a performance hit if I just supplied a long list of URLs to match.

 

 

I am open to better ways to deal with this type of issue if more experienced folk can throw some additional light onto this.

 

 

-Greg