Nimbostratus
For example if someone was to preform a GET / HTTP/1.1 on one our websites or even assoicated public IP address I want to block that.
Also for the record, I’m not a programmer of any type so I apologize in advance for any newbie/stupid follow up questions..
Thanks,
Bob
Nimbostratus
Here are some examples
when HTTP_REQUEST {
if { [HTTP::header "Host"] equals " " } {
reject
}
}
or
class publicaddr {
"215.25.25.35"
"215.25.25.33"
"215.25.25.34"
}
when CLIENT_ACCEPTED {
if { [matchclass [IP::remote_addr] equals $::publicaddr] } {
reject
}
}
These are just examples.
Hope this helps
CB
Nimbostratus
Just before your reply we actually came up with the below rule, but I like your reject option better...
when HTTP_REQUEST {
if { ([string tolower [HTTP::host]] equals "") } {
HTTP::respond 401
}
}
Thanks,
Bob
Nimbostratus
You can find more detail on in the wiki irule section under GLOBAL commands.
CB