Forum Discussion

Nimbostratus

Oct 25, 2011

Rule not working as expected

I have installed this rule on a virtual server for a Exchange 2010 Client Access Server. I am trying to block access to OWA on this VS. Code is below: (code) when HTTP_REQUEST { ...

Employee

Oct 25, 2011

I was hoping that the HTTP::respond 401 would send a 401 error screen if the /owa URI was at the end of the URL.should we use ends_with instead of eq?

e.g.

[root@iris:Active] config  b virtual bar list
virtual bar {
   snat automap
   pool foo
   destination 172.28.17.33:http
   ip protocol tcp
   rules myrule
   profiles {
      http {}
      tcp {}
   }
}

[root@iris:Active] config  b rule myrule list
rule myrule {
   when HTTP_REQUEST {
        if {[string tolower [HTTP::uri]] ends_with "/owa"} {
                HTTP::respond 401
        }
}
}

[root@iris:Active] config  curl -i http://172.28.17.33/test/owa
HTTP/1.0 401 Unauthorized
WWW-Authenticate: Basic realm=""
Server: BigIP
Connection: Keep-Alive
Content-Length: 0

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Rule not working as expected

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

Irule not working as expected

Example Expect Script

AFM Protocol Inspection rules for CVE-2022-3602 (aka SpookySSL)

Logging all AFM Rules

F5 Rules for AWS WAF - Rule ID to Attack Type Reference

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS