<div>
<div class="content wysiwyg-content">
we would like to white list a virtual directory on our website:<br />
&nbsp;we only want 2 external ip's (clients) to use this services which is a virtual directory on our website (web service within our website)<br />
&nbsp;we obviously do not want to white list our website, only the protected url below<br />
&nbsp;url:<br />
<a href="https://mydomin.com/service" rel="ugc">https://mydomin.com/service</a>&nbsp;&lt; this is our website<br />
<a href="https://mydomin.com/service/PROTECTEDWEBSERVICE" rel="ugc">https://mydomin.com/service/PROTECTEDWEBSERVICE</a>&nbsp;&lt; this is the service (url) we want to whitelist<br />
<br />
&nbsp;we have a Cisco 5500 asa firewall and would like to &nbsp;white list here if possible<br />
&nbsp;we also have a F5 load balancer (ALF) if not possible on asa would like to white list here<br />
<br />
&nbsp;is this possible and if so what Is the best approach<br />
keep in mind that its HTTPS
</div>
</div>


we would like to white list a virtual directory on our website:
 we only want 2 external ip's (clients) to use this services which is a virtual directory on our website (web service within our website)
 we obviously do not want to white list our website, only the protected url below
 url:
https://mydomin.com/service < this is our website
https://mydomin.com/service/PROTECTEDWEBSERVICE < this is the service (url) we want to whitelist

 we have a Cisco 5500 asa firewall and would like to  white list here if possible
 we also have a F5 load balancer (ALF) if not possible on asa would like to white list here

 is this possible and if so what Is the best approach
keep in mind that its HTTPS

whitelist url

Hardware-based firewalls provide more sophisticated protection for inbound and outbound traffic than the simple Windows software firewall or the basic NAT firewalls found in routers. These devices implement techniques such as stateful packet inspection, deep packet inspection, and content filtering; and may include built-in antivirus and anti-malware protection.

Hardware Firewalls

Windows Communication Foundation (WCF) is a tool used to implement and deploy a service-oriented architecture (SOA) to support distributed computing where services have remote consumers. It features a runtime and a set of APIs in the .NET Framework for building connected, service-oriented applications. Services typically have a WSDL interface (Web Services Description Language) that any WCF client can use to consume the service, regardless of which platform the service is hosted on. WCF implements many advanced Web services (WS) standards such as WS-Addressing, WS-ReliableMessaging, WS-Security, RSS Syndication Services, WS-Discovery, routing and better support for REST services.

Security is the protection of information systems from theft or damage to the hardware, the software, and the information on them, as well as from disruption or misdirection of the services they provide. The main goal of security is protecting assets, and an asset is anything of value and worthy of protection.  Information Security is a discipline of protecting information assets from threats through safeguards to achieve the objectives of confidentiality, integrity, and availability or CIA for short. On the other hand, disclosure, alteration, and disruption (DAD) compromise the security objectives.