Forum Discussion
flipperfil
Nimbostratus
NimbostratusAdding networks with switch [IP::client_addr]
I currently have an irule that looks for specific host entries or defaults to .... I am trying to incorporate rfc1918 networks statements example "10.0.0.0/8" - and this doesn't work. This is on v11.4.1.
when HTTP_REQUEST { switch [IP::client_addr] { "a.a.a.a" - "b.b.b.b" { return
} default { HTTP::header insert X-NOKERB X-NOKERB } } }
I have been trying other syntax but can't seem to get it right. Any help would be appreciated:
if { ([IP::client_addr] equals 10.0.0.0/8) || ([IP::client_addr] equals a.a.a.a) } then { return
} else { HTTP::header insert X-NOKERB X-NOKERB }
Sheigh_65772Cirrus
Found this commented out in one of my iRule, give it a try
if { [IP::addr [IP::client_addr] equals 10.x.x.0/24] }
flipperfilI cant seem to get it to work with supernets:
01070151:3: Rule [/Common/IDS_IRULE_HEADER_INSERT] error: /Common/IDS_IRULE_HEADER_INSERT:1: error: [command is not valid in the current scope][if { [IP::addr [IP::client_addr] equals 10.0.0.0/8] } { return } elseif { [IP::addr [IP::client_addr] equals 172.16.0.0/12] } { return } else { HTTP::header insert X-NOKERB X-NOKERB }]
if { [IP::addr [IP::client_addr] equals 10.0.0.0/8] } { return
} elseif { [IP::addr [IP::client_addr] equals 172.16.0.0/12] } { return
} else { HTTP::header insert X-NOKERB X-NOKERB }
nitassEmployee
it looks okay to me.
root@(B11050-R72-S12)(cfg-sync Standalone)(Active)(/Common)(tmos) list ltm rule qux ltm rule qux { when HTTP_REQUEST { if { [IP::addr [IP::client_addr] equals 10.0.0.0/8] } { return } elseif { [IP::addr [IP::client_addr] equals 172.16.0.0/12] } { return } else { HTTP::header insert X-NOKERB X-NOKERB } } }