For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Orlando_69227's avatar
Orlando_69227
Icon for Nimbostratus rankNimbostratus
May 08, 2014

URI Filter

Looking to Filter URI traffic.

 

Allow only: class Allow-List { { host 10.10.10.15 host 10.10.10.16 } }

 

Access to URI /sync and block/reject all other traffic. Still looking to allow other traffic through.

 

rule Filter { when HTTP_REQUEST { if { [HTTP::uri] starts_with "/sync*" } { if { not [class match [IP::client_addr] equals Allow-List]} { log local0. "Request from [IP::client_addr] for [HTTP::uri] has been rejected." reject } } } }

 

application delivery
availability
BIG-IP Access Policy Manager (APM)
deployment
devops
iRules
security

1 Reply

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    May 08, 2014

    Minor modification:

    when HTTP_REQUEST {
    if { ( [string tolower [HTTP::uri]] starts_with "/sync" ) and not ( [class match [IP::client_addr] equals Allow-List] ) } {
        reject
    }
}