URL and ip address blocking

Question

I have an iRule that blocks users from using an ip address to access our sites and also stops the wrong URL accessing it (this was done because of an error in a forwarding rule on our proxy).&nbsp;
&nbsp;This rule blocks incorrect URLs and ip addresses from accessing the website (incase of misconfiguration on forwarding host) &nbsp;
&nbsp;when HTTP_REQUEST { if { not ([string tolower [HTTP::uri]] starts_with "/mysite.com/") }{
&nbsp; 
&nbsp;HTTP::respond 200 content \ "Wrong URL entered Access to this URL is not allowed using this method. Please inform the Network Administrator." "Content-Type" "text/html" } }&nbsp;
&nbsp;This works but is specific to mysite.com. Is there any way i can make this generic to all sites based on an allowed url list on ASM or any other method&nbsp;
&nbsp;cheers Darren

chris_miller · Answer

You could use a class/data group that contains all of the allowed URLs and if HTTP::uri doesn't start with one of them, issue the same response. Is that what you're after?

darrenclegg_199 · Answer

i have set up a http_class and added the URL allowed list and applied it to the profile. i didn't need any iRule statement. 
&nbsp;  
&nbsp; thanks Chris

Forum Discussion

URL and ip address blocking

2 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

allow one url from blocks geolocation

domain blocking

Block traffic

CSV to Address External Datagroup File

Decoding the IPv4 address from the persistence cookie