Forum Discussion

Altostratus

May 06, 2024

URL

Could you please help to check if any cookies or header can be applied from WAF end for the url https://abc.com. We need to apply few rules in WAF and application for redirecting certain users to sp...

LTM

security

Daniel_Wolf

MVP

May 06, 2024

Hi Kuldeep22,

sure, you can do this with iRules:

when HTTP_REQUEST priority 500 {
    if { [HTTP::cookie exists "Name_of_your_Cookie"] } {
        ASM::disable
        pool name_of_your_pool
    } else {
        ASM::enable "/Common/name_of_your_ASM_policy"
        pool name_of_your_other_pool
    }
    
}

This iRule will check if a cookie with the name Name_of_your_Cookie exists. If yes, it will disable ASM and assign a pool. If no, it will enable a specific ASM policy and assign a different pool.
Of course this is just a suggestion, with iRules the sky is the limit for such use cases.

Probably you can also do this with Local Traffic Policies. But I don't use them a lot, so I cannot tell you how that would look like.

KR
Daniel

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

URL

Recent Discussions

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

ports are showing open on online scanning tool

Related Content

Doing mTLS Authentication per URL

url redirect

URL Shortener

BIG-IP Solutions: Simple URL Redirects

URL redirection iRule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS