Forum Discussion

Nacreous

Dec 13, 2013

iRule to allow only POST method

I'm using iRule from wiki page where need to throttle http requests also need to allow only POST requests, others should be dropped. throttling works great but having issue with dropping other http m...

Nacreous

Dec 16, 2013

Try this;

when RULE_INIT {
    set static::maxRate 10
    set static::windowSecs 3
    set static::timeout 30
}
when HTTP_REQUEST {
    set method [HTTP::method]
    log local0. "http request is of $method"
    if { $method eq "POST" } {
        set postCount [table key -count -subtable [IP::client_addr]]
        log local0. "postCount=$postCount"
        if { $postCount < $static::maxRate } {
            incr postCount 1
            table set -subtable [IP::client_addr] [expr {int (rand() * 10000)}] "ignore" $static::timeout $static::windowSecs
            return
        } else {
            log local0. "This user $user has exceeded the number of requests allowed."
            HTTP::respond 501 noserver Content "Request blockedExceeded requests/sec limit." Retry-After [expr {int (rand() * 100)}]
            return
        } 
    } else {
         Return "Method not allowed"
        HTTP::respond 405 noserver
        return
    }
}

Forum Discussion

iRule to allow only POST method

Recent Discussions

F5 ASM logging profile to specify source IP

Portal Access to HTTPS resources slow

Cannot login to Avaya wanx using f5 apm network access

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Best Method for load balancing

iRULE regsub error

ASM Attack Signature to block method on specific uri

load balance using http methods

owa iapp assign irule