Forum Discussion

ChristianD_1412's avatar
ChristianD_1412
Icon for Nimbostratus rankNimbostratus
Nov 22, 2012

Collect client IP header to write to payload

Hello all.   We have a request to restrict user account access based on the IP from which they come. While this could usually be addressed at the network layer, or even a somewhat simple iRule, i...
application delivery
dev
devops
iRules
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Nov 22, 2012
[IP::client_addr] is accessible in the CLIENT_ACCEPTED event, so you have the client's source on first TCP connection. Are you talking about injecting the IP information into the TCP packet? If so, does the application have a way of retrieving this information?

 

 

The TCP::options command allows you to read/write into the options block of a TCP header.

 

 

https://devcentral.f5.com/wiki/iRules.TCP__option.ashx