Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

How do I block a user access to a directory within my website?

Go to solution
Sharath413
Nimbostratus
Nimbostratus

‎04-Feb-2021 12:23

I'm running ASM in 15.1.2.

How do I block a user access to a directory within my website? For eg: I want to allow all URLs on my website but wp-content/uploads/testfolder/forms/*

As shown above, I want to block anything that is in that specific folder.

 

Can I do it using disallowed URLs setting?

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Enes_Afsin_Al
MVP
MVP

‎04-Feb-2021 12:51 - last edited on ‎04-Jun-2023 21:04 by Fog

Hi Sharath413,

Yes, you can use disallowed URLs policy for ASM.

https://support.f5.com/csp/article/K29418033#p2

Or iRule:

when HTTP_REQUEST {
	if { [HTTP::uri] starts_with "/wp-content/uploads/testfolder/forms/" && [IP::client_addr] ne "your_ip_address" } {
		drop
	}
}

View solution in original post

0 Kudos
2 REPLIES 2

Go to solution
Enes_Afsin_Al
MVP
MVP

‎04-Feb-2021 12:51 - last edited on ‎04-Jun-2023 21:04 by Fog

Hi Sharath413,

Yes, you can use disallowed URLs policy for ASM.

https://support.f5.com/csp/article/K29418033#p2

Or iRule:

when HTTP_REQUEST {
	if { [HTTP::uri] starts_with "/wp-content/uploads/testfolder/forms/" && [IP::client_addr] ne "your_ip_address" } {
		drop
	}
}
0 Kudos

Go to solution
Sharath413
Nimbostratus
Nimbostratus

‎04-Feb-2021 12:59 - last edited on ‎24-Mar-2022 02:13 by Fog

 I have added the URL along with a wildcard at the end in config utility. It seems to be working as desired. I had to enable block and alarm in learning and blocking settings.

0 Kudos
Copyright © 2023 Khoros, LLC