I have a requirement where the urls on a website must be accessible from Internal networks only. what is the easiest way to do this without irules?
can I put in an IP address exception for private IPs and set it to 'Never block this IP' and add the URLs to blocklist to achieve this?
you can try to set this up :
1 - VS1 /Virtual Server exposed on internal VLAN without URL restrictions
2- VS2 /Virtual Server exposed on external VLAN (with same pool members VS1-) and add the URLs you want blocked in Disallowed URLs List.
Yes, you can do it in this way. Just define all URLs , which should be available externally as allowed and set "Never Block" for internal IP. Just pay attention, that "Never Block" means don't block any violation from that IP.