I want block all link if it’s not use on my site…so i create firewall, firewall working perfect if i use diff domain…but when i use subdomain, firewall not working anymore
That isn’t exactly clear to me, but I will try to help you.
Do you want to restrict access to
photos.mydomain.com to only one or a few subdomains of
mydomain.com but not the entire zone?
mydomain.comand all its subdomains will be allowed.
If the target is only
photos.mydomain.com, you may want to change the
eqand adjust the semantics.
http.refererfield is set with the
mydomain.comvalue, any other domains/subdomains containing that value will be accepted. For example:
- A domain “
- A subdomain “
- A domain “
Usually the third situation isn’t a problem, but these scenarios can be avoided if necessary.
Anyway, you can make it more reliable by making some fine tuning.
- Request Method equals “
- Hostname equals “
- Referer does not equal “
- Referer does not contain “
(http.request.method eq "GET" and http.host eq "photos.mydomain.com" and http.referer ne "mydomain.com" and not http.referer contains ".mydomain.com")
I hope it helps. Please let me know if I can help you with any further questions.
This topic was automatically closed after 30 days. New replies are no longer allowed.