Forum Discussion

Nimbostratus

Aug 19, 2013

Restrict Access via HTTP referer

I'm attempting to restrict access to an application via HTTP REFERER. Using the example given by the dev team, I'm using something that looks like this: when HTTP_REQUEST { switch -glob [HTTP::...

Nimbostratus

Aug 19, 2013

Thanks for your reply Kevin!

Essentially I only want the VIP to be accessible from a particular subdomain. The client in question has an application that resides on its own subdomain, such as:

app1.DOMAIN.com app2.DOMAIN.com etc.

So, I want the Virtual Server in question to be accessible when a link is clicked on *.DOMAIN.COM, and inaccessible when referenced directly (by IP address). Also, an empty header being passed should be denied as well.

Does this make sense?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Restrict Access via HTTP referer

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Is it possible to create a Single Pool with multiple ports ?

F5 object groups in AFM

Round-robin method not load balanced

F5 ASM with fortisandbox

Disabling signature for a URL

Related Content

Irule for restricting access

Office 365 Tenant Restrictions

F5 Distributed Cloud Customer Edge on F5 rSeries – Reference Architecture

Cloud Docs - F5OS Technical Reference Materials

Customer Edge Site High Availability for Application Delivery - Reference Architecture

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS