Forum Discussion

3 Replies

  • As my understanding, We can't think L7 ADC without HTTP method(GET , POST, etc). In that case use L4 forwarding VIP to restrict http method.

     

    @Expert, Please add your points.

     

  • Dear,

    I don't think it's possible via a http profile.

    But you can use an iRule or a LTM policy to restrict. Here is an example of the iRule:

    when HTTP_REQUEST {
        switch [HTTP::method] {
            "GET" -
            "POST" -
            "HEAD" {
                return
            }
            default {
                HTTP::respond 403
            }
        }
    }
    
  • In HTTP profile Enforcement section, you can define :

     

    • Known Methods : list all allowed methods
    • Unknown Method : Reject to deny all methods not in Known Methods list.