Hello, I’m trying to block a simple URL / file names like filename1.asp / filename2.asp from all traffic, with IP exceptions.
Block a url: https://www. mydomain.com/thisfolder
Allow a set list of IP’s only to access this URL and or set of file names.
We have tried this setup already, by setting up a new WAF rule and for some reason, it’s not so simple, as one would expect.
I’m able to block the URL fairly easy, but not seeing how to allow certain IP’s within that same rule. This doesn’t work like other firewall rules from other platforms, so i guess it’s a learning curve, like everything else.
I would think it should be simple and we are just missing the answer to this one. I guess we could just allow list our IP, but that can be hard to track in the way this WAF is setup as it seems to be applied on a global level and that is not really what we want for the entire account of multi-domains.
For now, we just want to be able to lockup a simple URL path like https://www.mydomain. com/thisfolder to all traffic, caching and anything else related, except certain dedicated IP. So it’s impossible to gain access to unless you are using XYZ IP’s.
Ok we tried that and it failed sadly, still learning this tool, thank you for the quick reply, can we also redirect all other traffic back to the home page in zero seconds? I know we can do a meta tag for this, but perhaps an outdated methodology?
Could you kindly provide an extra sample to learn from, one url and one path?
Then maybe a version with more than one URL and more then one IP.