For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

R_Marc's avatar
R_Marc
Icon for Nimbostratus rankNimbostratus
Nov 02, 2015

So just took a look and I don't see a way to do that natively. Perhaps it's in v12 (the presentation was using v12, but I don't remember if it was there or not).

 

One thing I think you could do, however, is create a DDoS profile and apply that profile via an iRule (sort of a combination). I would keep the IPs you wanna rate limit in a Data Group and do a class match in CLIENT_CONNECT to apply the DDoS profile (https://devcentral.f5.com/wiki/iRules.DOSL7__enable.ashx). That way you are using the efficiency of the DDoS profile with the added functionality I think you are looking for to apply it to particular CIDR's.