block url at root level

Question

I want to block a url if there are no parameters or parameter value is incorrect&nbsp;

shaun_simmons1 · Answer

Can you or a member of your team modify the permissions to the root level to deny access, rather than doing it at the F5 level as a band aide ?&nbsp;

shaun_simmons1 · Answer

You can apply an iRule that 302 redirects users to a specific URI, on the VS and if it does not "start_with" the URI, then redirect them to correct one.&nbsp;
At least that is my thoughts on an iRule ha!  &nbsp;

samstep · Answer

Yes, this is easily done with ASM - flag a parameter as mandatory, disallow empty value and make sure you are blocking on relevant violations:&nbsp;

Illegal number of mandatory parameters&nbsp;

Illegal empty parameter value&nbsp;
Illegal parameter data typeIllegal parameter numeric value

Forum Discussion

block url at root level

3 Replies

Recent Discussions

Reverse Proxy Not Behaving

Stable Firmware for F5

F5 VE in Azure - troubles with Sentinel integration

Need help on i-rule to specific uri path

BigIP Next - Health Monitors / Template

Related Content

Use TLS Fingerprinting as a First Level of Defense in F5 Distributed Cloud

Implementing SSL Orchestrator - High Level Considerations

Ansible module to update BIG-IP root/admin passwords

OWASP Tactical Access Defense Series: Broken Object Property Level Authorization and BIG-IP APM

OWASP Tactical Access Defense Series: Broken Object Level Authorization and BIG-IP APM