Forum Discussion
IanB
May 18, 2016Employee
You can do it that way, but it might be cleaner and more supportable to use an opensource ICAP server, which BigIP already has built-in support for through request-adapt and response-adapt profiles.
With ICAP, the bigip takes the http request, wraps it up inside an ICAP header, sends that off to the ICAP server, which can modify or block the request. If allowed/modified, the request is sent off to the pool, the reply comes back, again passes through the ICAP server, and then finally back to client.
ICAP is intended for content filtering, for example blocking certain websites, but it might suit your needs here also.