MD1967
Contributor
Contributor

NSX Load Balancer URI Help

Jump to solution

Hi guys.

I am trying to set up a load balancer with URI rules to block traffic from particular sites.

So for instance I want to have the commands

' If the url starts with ' test1 ' then allow traffic '

' block all other traffic '

and

' if the url starts with ' test2 ' block traffic '

I have been searching through the forums and kbs and can find nothing that works in NSX.


Help would be very much appreciated.


Thanks

0 Kudos
1 Solution

Accepted Solutions
lhoffer
VMware Employee
VMware Employee

Page 35 of the NSX-6.2 - LB configuration examples​ includes examples for both blacklisting and white listing scenarios using application rules.

In your scenario, you can white list the "test 1" URI path using the following:

acl whitelist_test_1 path_beg -i /test1

tcp-request connection reject if !whitelist_test_1

Similarly you can black list the test 2 path the same way but without the "!":

acl blacklist_test_2 path_beg -i /test2

tcp-request connection reject if blacklist_test_2

View solution in original post

0 Kudos
2 Replies
lhoffer
VMware Employee
VMware Employee

Page 35 of the NSX-6.2 - LB configuration examples​ includes examples for both blacklisting and white listing scenarios using application rules.

In your scenario, you can white list the "test 1" URI path using the following:

acl whitelist_test_1 path_beg -i /test1

tcp-request connection reject if !whitelist_test_1

Similarly you can black list the test 2 path the same way but without the "!":

acl blacklist_test_2 path_beg -i /test2

tcp-request connection reject if blacklist_test_2

View solution in original post

0 Kudos
MD1967
Contributor
Contributor

Thank you for your help.

0 Kudos