diff --git a/README.md b/README.md
index 82476e1..86d5b8c 100644
--- a/README.md
+++ b/README.md
@@ -102,6 +102,21 @@ In case the single field does not contain a parseable JSON string, the string wi
 When used in Hash lookups, this will result in an error as normal.
 
 
+#### Filter Prefix - optional
+Only applicable when `:filter_prefix` is used.
+To use Filter by prefix, set, for example:
+
+    :vault:
+        :filter_prefix: 'vault::'
+        :filter_mode: 0
+
+This will cause only keys prefixed with `vault::` to be looked up against vault, all other keys will skip the vault backend.
+
+`filter_mode` option `1` will remove your given `filter_prefix` from the key prior to the look up against the vault backend, this
+could be useful in some cases to avoid rewriting keys in vault to meet the requirements of your filter, if unset or set to `0` the exact 
+key name used in the hiera function will be used in the vault lookup.
+
+
 ### Lookup type behavior
 
 In case Array or Hash lookup is done, usual array or hash merging takes place based on the configured global `:merge_behavior` setting.
diff --git a/hiera-vault.gemspec b/hiera-vault.gemspec
index cb94306..fc776c5 100644
--- a/hiera-vault.gemspec
+++ b/hiera-vault.gemspec
@@ -3,7 +3,7 @@ require 'rubygems/package_task'
 
 spec = Gem::Specification.new do |gem|
     gem.name = "hiera-vault"
-    gem.version = "0.2.2"
+    gem.version = "0.2.2.1"
     gem.license = "Apache-2.0"
     gem.summary = "Module for using vault as a hiera backend"
     gem.email = "jonathan.sokolowski@gmail.com"
diff --git a/lib/hiera/backend/vault_backend.rb b/lib/hiera/backend/vault_backend.rb
index 8cba891..160b2f2 100644
--- a/lib/hiera/backend/vault_backend.rb
+++ b/lib/hiera/backend/vault_backend.rb
@@ -35,6 +35,16 @@ def initialize()
             config.ssl_ca_cert = @config[:ssl_ca_cert] if config.respond_to? :ssl_ca_cert
             config.ssl_ca_path = @config[:ssl_ca_path] if config.respond_to? :ssl_ca_path
             config.ssl_ciphers = @config[:ssl_ciphers] if config.respond_to? :ssl_ciphers
+            if @config[:filter_prefix].nil?
+              @filter_prefix = nil
+            else
+              @filter_prefix = @config[:filter_prefix]
+            end
+            if @config[:filter_mode].nil?
+              @filter_mode = 0
+            else
+              @filter_mode = @config[:filter_mode]
+            end
           end
 
           fail if @vault.sys.seal_status.sealed?
@@ -47,6 +57,13 @@ def initialize()
 
       def lookup(key, scope, order_override, resolution_type)
         return nil if @vault.nil?
+        if not @config[:filter_prefix].nil?
+          filter = @config[:filter_prefix]
+          return nil if not (key[/^#{filter}/])
+          if @config[:filter_mode] > 0
+            key = key.sub(/^#{filter}/, '')
+          end
+        end
 
         Hiera.debug("[hiera-vault] Looking up #{key} in vault backend")