Forum Discussion
1 Reply
Sort By
- youssef1Cumulonimbus
Hi,
You can use an Irule:
when HTTP_REQUEST { if {[string tolower [HTTP::method]] contains "YOUR METHOD"}{ log local0. "Forbidden HTTP method ([HTTP::method]) attempted by [IP::client_addr]" reject } }
For example, to reject requests containing the TRACE method, enter the following text:
when HTTP_REQUEST { if {[string tolower [HTTP::method]] contains "trace"}{ log local0. "Forbidden HTTP method ([HTTP::method]) attempted by [IP::client_addr]" reject } }
In your case you can autorize only wanted method !!!
For more information:
https://support.f5.com/csp/article/K85840901
regards