Dear Joe,
On Mit 23.12.2009 15:21, Joe Stein wrote:
Is there a way to block URL terms without degrading performance (so
kind of like a WAF type function)?
Also, how to block IP? If there is doc a link is kewl too o, np.
something like this.
http://haproxy.1wt.eu/download/1.3/doc/haproxy-en.txt
4.3) HTTP header manipulation
Examples :
----------
.
.
.
# block annoying worms that fill the logs...
reqideny ^[^:\ ]*\ .*(\.|%2e)(\.|%2e)(%2f|%5c|/|\\\\)
reqideny ^[^:\ ]*\ ([^\ ]*\ [^\ ]*\ |.*%00)
reqideny ^[^:\ ]*\ .*<script
reqideny ^[^:\ ]*\
.*/(root\.exe\?|cmd\.exe\?|default\.ida\?)
.
.
or
5) Access lists
Example :
---------
.
.
and http://haproxy.1wt.eu/download/1.3/doc/configuration.txt
.
.
.
6. HTTP header manipulation
7. Using ACLs
7.4. Matching IPv4 addresses
.
.
.
Thanks!!!
Hth.
Aleks
Happy Holidays in advance =8^)
/*
Joe Stein, 973-944-0094
http://www.medialets.com
*/