Forum Discussion

Nimbostratus

Feb 21, 2016

Blocking multiple IPs with iRules

Hi, I am trying to block multiple IP's with iRules but unable to do so. Currently using the below command, but everytime there is a new ip, I need to create an iRule for that & bind it to t...

Historic F5 Account

Feb 21, 2016

Hi Chadi. The rule above is static and will block all traffic from the ip defined. To dynamically build a blacklist, you should look at the table commands for creating a sub table and adding/removing entries. Also, you will want to define more criteria for adding to the list. See this rate limiting example for a look at a similar solution: https://devcentral.f5.com/s/feed/0D51T00006i7Q28SAE Also, you may want to consider looking at AFM w/ an IP Intelligence policy. This will give you capability to filter based on IP reputation and/or consume feed lists of blacklisted IPs without managing in an iRule.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Blocking multiple IPs with iRules

Recent Discussions

Problem with lets encrypt and redirect after update

where can find silverline ddos protect config guide?

iRule for client certificate verification and inserting CN

Earth Simnavaz

Should config via cli rather than gui?

Related Content

MS Exchange ProxyNotShell block implemented via iRules

iRule - Block part of a query

Irule for diverting blocked gelocation users to a page

Response and blocking page

Zero Trust building blocks - Machine Identity Management (MIM) and Workload Protection

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS