Write an irule or a policy to allow specific URIs

Question

Hi Guys,&nbsp;I'm quite new to F5. We have a requirement for allow only 4 specific URIs and block any other URI. What would be the best way to do it. Would it be using an irule or using a LTM policy? Are you able to provide an example irule or LTM policy for this please?

youssef1 · Answer

Hi,&nbsp;I think usign an irule for your need  will give you a lot more flexibility you can answer a blocking page to the user, a drop, a reset ...&nbsp;Anyway find an example with ltm policy (with reset)... if you want more flexibility (blocage page in ifile for example use an irule):&nbsp;regards&nbsp;&nbsp;

faruk_aydin · Answer

use this iRule:when HTTP_REQUEST {
	switch -glob [string tolower [HTTP::uri]]
		"/uri1*" -
		"/uri2*" -
		"/uri3*" -
		"/uri4" 
		{
			#do nothing
		}
		default
		{
			#drop others
			drop
		}
}

wick54 · Answer

Thanks, I will try this, if URI contains Uppercase characters, do i need to change to it lower case in iRule? would that be matched?

wick54 · Answer

If URI contains Uppercase characters, do i need to change to it lower case in LTM policy? would that be matched?

youssef1 · Answer

It would be match. By default it's not case sensitive.If you want to enable "case sensitive" you can do IT in options menu (in ltm policy in right)...&nbsp;

Forum Discussion

Write an irule or a policy to allow specific URIs

6 Replies

Recent Discussions

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

GIS app loading very slow through F5 LTM

F5 Device Management Certificate renewal

Recommendation for Adv. Lab

Cloud Apps Protection

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS