Forum Discussion
I got the error below. Do you know what the issue is or what is missing?
01070151:3: Rule [/Common/iRULE-BLOCKED] error: /Common/iRULE-BLOCKED-:3: error: [parse error: PARSE syntax 139 {syntax error in expression " not ([HTTP::uri] equals DG2-ALLOWED-URIs]) ": variable references require preceding $}][{ not ([HTTP::uri] equals DG2-ALLOWED-URIs]) }]
- Simon_BlakelyApr 05, 2020Employee
when HTTP_REQUEST { if { [class match [IP::client_addr] equals DG1-BLOCKED-SUBNETS]} { if { not ([class match [HTTP::uri] equals DG2-ALLOWED-URIs]) } { drop } } }
You were missing a [ class match
- ant77Apr 07, 2020Cirrostratus
Thanks! Appreciate your help...
Quick question, since the statement "drop" is there based on the condition in the data group needing to be met, will this drop traffic for all other traffic (regular traffic) outside of that condition (subnets and URIs) in the data group.? I just don't want this to drop our regular traffic...
- Simon_BlakelyApr 07, 2020Employee
The drop will only impact traffic from the DG1-BLOCKED-SUBNETS that does not match the DG2-ALLOWED-URIs.
All other traffic that is not in the DG1-BLOCKED-SUBNETS will pass for all URIs.
- ant77Apr 08, 2020Cirrostratus
thank you! appreciate all your help.