Arthur_7109
Feb 10, 2014Nimbostratus
V11.4 replacement for HTTP::class select ?
Hi,
We have a 10.2 LTM + ASM, and need to block some requests based on the URI, with an iRule like
when HTTP_REQUEST {
if { [HTTP::uri] starts_with "/xxx" } {
if { !([HTTP::uri] starts_with "/xxx123") } {
log local0. "Suspect URI [HTTP::uri]"
HTTP::class select "cl_GENERIC_block_all"
}
}
}
So "/xxx123" is allowed, while all other "/xxx*" are blocked.
The ASM security policy for cl_GENERIC_block_all blocks all requests.
We do it this way in order to use an existing ASM remote logging profile that logs all requests, now including the above blocked ones.
This works OK, but with HTTP::class being replaced by POLICY::??? in version 11.4, the rule will no longer work.
Is there an equivalent of "HTTP::class select" in v11.4?
There is no POLICY::select (yet?).