Forum Discussion

Nimbostratus

Jan 26, 2012

To block some specific traffic from F5 for specific virtual directory

Here is the our requirement so if possible can you send me actual iRule to fulfill this requirement. Site: https://www.xyz.com/bac Allowed below host: 174.26.53.0/24 172.56.36.2 175.63.54.0/24 Block: ...

Cirrostratus

Jan 26, 2012

Hi Pankaj,

You can try to implement this type of logic in an iRule, but it may be simple to bypass:

http://devcentral.f5.com/Default.aspx?tabid=53&forumid=5&tpage=1&view=topic&postid=30900

That said, here is an example that could provide some protection. First, create an address data group containing the hosts and networks which can access /bac*. Then use an iRule like this which references a data group named allowed_hosts_dg:


when HTTP_REQUEST {

switch -glob [string tolower [HTTP::path]] {
"/bac*" {
if {not [class match [IP::client_addr] equals allowed_hosts_dg]}{
HTTP::respond 403 content {Blocked!}
}
}
}
}

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

To block some specific traffic from F5 for specific virtual directory

Recent Discussions

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

full-proxy HTTP2

Related Content

Attacks against Domain Specific Languages, EU Cybersecurity Laws, & Supply Chain Attacks

Disabling Specific Weak Cipher Suites

find specific SNMP OID

NAT for specific IPs

check the utilization on specific node

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS