CirrusHello All,
Is there a way to block the users accessing the OWA through the F5 using their domain?
For example, I have 2 domains; domain1.com and domain2.com .. I want only users from domain1.com to be able to use OWA, but users from domain2.com to be blocked.
Is this possible on ASM/LTM level?
Hi islam.nadim,
ASM:
Security ›› Application Security ›› Headers ›› Host Names
add host names
Security ›› Application Security ›› Policy Building ›› Learning and Blocking Settings
›› Headers
›› Illegal host name
Enable alarm and block settings
Save Policy
Apply Policy
LTM:
iRule:
when HTTP_REQUEST {
if { [HTTP::host] ne "domain1.com" } {
drop
}
}Policy:
CirrusHello ,
Thank you for the reply, maybe I haven't cleared exactly what I'm looking to achieve. It is not related to DNS or FQDNs. It is related to logging in to the OWA. So, if a user types <Username>@domain1.com, he can access .. But if he types <Username>@domain2.com, ASM should block such traffic ..
I mean, I want only <Username>@domain1.com to be working, but any other domain to be dropped showing ASM block page.
Hope this clears what I'm looking to achieve.
EmployeeHello,
Do you have any login page in your ASM configuration?
If you deal with logging, then better to configure appropriate login page.
Thanks, Ivan