NimbostratusHi i want to block a specific URL, example: xzy.abc.com/aaa/bbb/ddd/* and allow every thing else like xyz.abc.com/* through ASM, i have tried disallowing the URL(Security>Application Security>URLs>Disallow URLs) but did not work. Please help.
CirrostratusDid you check your Policy Blocking Settings? Does it have Block checkbox selected for "Illegal URL"? If not, go ahead and select it, apply the policy changes, and you're done.
EmployeeGo to Security ›› Application Security : URLs : Disallowed URLs : Disallowed HTTP URLs and add the specific URI you wish to block.
CirrocumulusConfirm you're not in transparent mode
Cirrostratustry
create a custom violation named as Illegal_Url
when HTTP_REQUEST {
set reqBlock 0
if { ([[string tolower [HTTP::uri]] contains "/aaa/bbb/ddd/")} {
set reqBlock 1
}
}
when ASM_REQUEST_DONE {
if { $reqBlock == 1} {
ASM::raise Illegal_Url
}
}
CumulonimbusDid you enable Trigger ASM iRule event in your ASM policy?