For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Lior_54855's avatar
Lior_54855
Icon for Nimbostratus rankNimbostratus
Dec 03, 2014

Hi,

 

Thank you for this link. I know how to do it with ASM or with iRule, but the REST API works on the MGMT interface. Is there a way I can create virtual server and send the REST API requests through this virtual server?

 

  • R_Marc's avatar
    R_Marc
    Icon for Nimbostratus rankNimbostratus
    Dec 03, 2014
    Sorry, misunderstood your question...I believe that access is handled via an apache instance. You could perhaps modify the /etc/http/http.conf and add in some rewrite rules to block the unwanted methods. That might persist reboots, but would not likely persist upgrades. They don't appear to have included the allowed methods module. However, you would be limiting the capability of the REST API to Read Only, unless you wrote a complicated rule to allow some IP's users to PUT/POST.