limit the possibility of doing POST's

Question

I want to limit the possibility of doing http POSTs to a set of know machines. All public machines must be able to do get's on the same HTTP server. 
&nbsp;  
&nbsp; irules are new to me so some help will be appiciated 
&nbsp;  
&nbsp; if {[HTTP::method] eq "POST"}  
&nbsp; if NOT { check is server is known (on IP/name) } 
&nbsp;     {  
&nbsp;          log event 
&nbsp;          reject request 
&nbsp;     } 
&nbsp;  
&nbsp; Can someone help me get started ? 
&nbsp;  
&nbsp; thanks 
&nbsp;  
&nbsp; K 
&nbsp;  
&nbsp;

hooleylist · Answer

You can add the client or server IP addresses to a datagroup (class) of type 'address' and then use the matchclass command to evaluate the address against the class.  The matchclass wiki page has examples: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/matchclass 
&nbsp;  
&nbsp; To log from an iRule you can use the log command: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/log 
&nbsp;  
&nbsp; To reject a connection, you can use reject: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/reject 
&nbsp;  
&nbsp; Aaron

Forum Discussion

limit the possibility of doing POST's

1 Reply

Recent Discussions

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Related Content

User roles per partition: are multiple possible?

iRule Security 101 - #08 - Limiting POST Data

Introduction to F5 Distributed Cloud Console Rate Limiting Feature

ASM filtered HTML exceeded limit: event code C190 Filtered Response HTML exceeded max limit

Large payload post requests aren't responding