Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

  1. Kemp Support
  2. Knowledge Base
  3. Content Delivery

How to only permit a specific host through a VS

Updated

 

Information

 

Summary:

How to only permit a specific host through a VS using content rules
Environment:

Product: LoadMaster

Version: Any

Platform: Any

Application: Any
Question/Problem Description:

How to create a content rule to only allow a specific host, and block all others.
Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause: Would like to limit access to a Virtual Service
Resolution:
  • Navigate to Rules & Checking > Content Rules > Create New
  • Set the Rule Type to Content Matching
  • Set the Header Field to "Host"
  • In the Match String, enter the host that should be permitted using proper Regex format
  • Enable the options "Negation", "Ignore Case", and "Fail On Match".  This will only allow the host you specified and fail all other traffic.
  • Create the rule
  • Place the rule within the appropriate Virtual Service within Advanced Properties > HTTP Selection Rules

Now, when that specific host is requested it will be permitted.  All other hosts will be blocked.

match_on_host_rule.PNG
Workaround: This can also be achieved through the use of ESP or by creating a custom WAF rule.
Notes:

https://support.kemptechnologies.com/hc/en-us/articles/5143451528077-Content-Rules 

https://support.kemptechnologies.com/hc/en-us/articles/203125029-Edge-Security-Pack-ESP- 

https://support.kemptechnologies.com/hc/en-us/articles/203128369-Web-Application-Firewall-WAF- 

Comments

In this document