F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

ChadBigIP_14663's avatar
ChadBigIP_14663
Icon for Nimbostratus rankNimbostratus
Aug 20, 2013

Block Port 22 via iRules

Hello,   I wanted to know if it is possible to only ALLOW connections on PORT 22 using the Quova Database IP Repository to only ALLOW BY CERTAIN STATES in the US, I do not want to allow the entire...
application delivery
devops
iRules
boneyard's avatar
boneyard
Icon for MVP rankMVP
Aug 20, 2013

it depends with what you mean with block port 22. port 22 as in the port on which the BIG-IP listen for management? if so, no then i don't believe you can apply iRules on that.

 

if you mean block port 22 on a virtual server then it could be possible. from what i found the Quova (currently Neustar) should be able to provide state information. so you could write something simple that only the strings from whereis (see below) for the states you want to allow go through and other connections are closed.

 

see: https://devcentral.f5.com/wiki/iRules.whereis.ashx