Filter for FTP access

Question

I am new to iRules and am porting some from 4.x to 9.x.  I have the following question.&nbsp;
&nbsp;We have an FTP rule which only allows access to specified clients.  In version 4.x it had no event to trigger the rule but in 9.x I believe the rule needs to be triggered by an event (is this a correct assumption?).&nbsp;
&nbsp;when XXX {
&nbsp;   if {[IP:addr [IP::client_addr] equals aa.bb.cc.dd]} {
&nbsp;      use pool ftp
&nbsp;   }
&nbsp;   else {
&nbsp;      discard
&nbsp;   }
&nbsp;}&nbsp;
&nbsp;What is the XXX event I should use to trigger the iRule? (USER_REQUEST?), or am I going about this the wrong way?&nbsp;
&nbsp;Thanks

deb_allen_18 · Answer

you're on the right track.
The event you are looking for is "CLIENT_ACCEPTED":
when CLIENT_ACCEPTED {
  if {[IP:addr [IP::client_addr] equals aa.bb.cc.dd]} {
    use pool ftp
  } else {
    discard
  }
}
/deb

rick_77318 · Answer

Perfect - Thanks Deb

Forum Discussion

Filter for FTP access

2 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

Zero Trust Application Access for Federal Agencies

Federated AWS Console Access Made Easy: F5 BIG-IP Access Policy Manager Access Guided Configurations

Access Troubleshooting: BIG-IP APM OIDC integration

Automating F5 Licensing - without direct internet access

Load Balancing Omnissa Unified Access Gateway with BIG-IP LTM

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS