Dear Joe,

On Mit 23.12.2009 15:21, Joe Stein wrote:
Is there a way to block URL terms without degrading performance (so
kind of like a WAF type function)?

Also, how to block IP?  If there is doc a link is kewl too o, np.

something like this.

http://haproxy.1wt.eu/download/1.3/doc/haproxy-en.txt

4.3) HTTP header manipulation

Examples :
----------
.
.
.
        # block annoying worms that fill the logs...
        reqideny      ^[^:\ ]*\ .*(\.|%2e)(\.|%2e)(%2f|%5c|/|\\\\)
        reqideny      ^[^:\ ]*\ ([^\ ]*\ [^\ ]*\ |.*%00)
        reqideny      ^[^:\ ]*\ .*<script
        reqideny      ^[^:\ ]*\
        .*/(root\.exe\?|cmd\.exe\?|default\.ida\?)

.
.

or

5) Access lists

Example :
---------
.
.

and http://haproxy.1wt.eu/download/1.3/doc/configuration.txt

.
.
.
6. HTTP header manipulation
7. Using ACLs
7.4. Matching IPv4 addresses
.
.
.

Thanks!!!

Hth.

Aleks

Happy Holidays in advance =8^)

/*
Joe Stein, 973-944-0094
http://www.medialets.com
*/

Reply via email to