Hi guys.
I am trying to set up a load balancer with URI rules to block traffic from particular sites.
So for instance I want to have the commands
' If the url starts with ' test1 ' then allow traffic '
' block all other traffic '
and
' if the url starts with ' test2 ' block traffic '
I have been searching through the forums and kbs and can find nothing that works in NSX.
Help would be very much appreciated.
Thanks
Page 35 of the NSX-6.2 - LB configuration examples includes examples for both blacklisting and white listing scenarios using application rules.
In your scenario, you can white list the "test 1" URI path using the following:
acl whitelist_test_1 path_beg -i /test1
tcp-request connection reject if !whitelist_test_1
Similarly you can black list the test 2 path the same way but without the "!":
acl blacklist_test_2 path_beg -i /test2
tcp-request connection reject if blacklist_test_2
Page 35 of the NSX-6.2 - LB configuration examples includes examples for both blacklisting and white listing scenarios using application rules.
In your scenario, you can white list the "test 1" URI path using the following:
acl whitelist_test_1 path_beg -i /test1
tcp-request connection reject if !whitelist_test_1
Similarly you can black list the test 2 path the same way but without the "!":
acl blacklist_test_2 path_beg -i /test2
tcp-request connection reject if blacklist_test_2
Thank you for your help.