Filter to allow certain URL/URI

Question

Hello,&nbsp;I have a VIP with multiple DNS alias record tied to it. I’d like to create an irule to allow only certain traffic that matches both host and path. Any other traffic will be rejected.&nbsp;Allow:abc.com/123/456/abc.com/cat/dog/xyz.com/123/456/xyz.com/cat/dog/&nbsp;Everything else gets drop.&nbsp;I have one written without the host url and hoping the uri would be sufficient but seems like something isn't like it and the page overall doesn't work.&nbsp;when HTTP_REQUEST&nbsp;{&nbsp;&nbsp;if {!([HTTP::uri] eq "/123/456/") and ([HTTP::uri] eq "/cat/dog/")}&nbsp;&nbsp;{&nbsp;&nbsp;&nbsp;&nbsp;reject&nbsp;&nbsp;}}&nbsp;thank in advance.

samir · Accepted Answer

you can write iRule something below.when HTTP_REQUEST {
if { ([HTTP::host] equals "abc.com" or [HTTP::host] equals "xyz.com") } {
	if { [HTTP::uri] starts_with "/123/456/" || [HTTP::uri] starts_with "/cat/dog/" } {
	pool poo_A
		}
	else { reject }
		} 
	}&nbsp;ORwhen HTTP_REQUEST {
	if { !([HTTP::host] equals "abc.com" or [HTTP::host] equals "xyz.com") &amp;&amp; !([HTTP::uri] starts_with "/123/456/" || [HTTP::uri] starts_with "/cat/dog/") } {
	reject }
	}

tny81 · Answer

Thank you Samir.  I like the second option of yours and it seems to work.

Forum Discussion

Filter to allow certain URL/URI

2 Replies

Recent Discussions

[ASM] - what is "Browser Challange file" ?

Rewrite uri translation not working

no available managed rule groups for Israel il-central-1

About shun list for L7 DDoS?

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

Related Content

URL/URI rewrite without changing in Client browser

Need to redirect complete URL into redirected uri

replace part of URI for specific URL and pass remaining

need help with url\uri rewrite to pass username

Redirect the domain name on URL, but keep path as the original URI path