Geolocation irule with HTTP response

Question

I am trying to modify the following irule that is set to block connections from Germany, to display a message to the end user that thier connection is blocked. I added 'when http_request' command at the end of the irule below but it doesnt seem to go well with the switch command, something about not supported/invalid combination. Any help would be much appreciated. Thanks in advance.
when CLIENT_ACCEPTED {
set default_pool [LB::server pool] switch [whereis [IP::client_addr] country] {DE {
    log local0. "Geo Client ([IP::client_addr]) detected as Germany" 
    reject 
} 
default { pool $default_pool   }

}
}

richard__harlan · Answer

You can try something like this
when HTTP_REQUEST {

set default_pool [LB::server pool] switch [whereis [IP::client_addr] country]{

DE {

log local0. "Geo Client ([IP::client_addr]) detected as Germany" 
HTTP::respond 500 content {

Apology Page

We are sorry, but you are not allowed access to this site from you geographic location

}
} 
    default { pool $default_pool   }

}

sk_121993 · Answer

Thanks Richard! That compiles without any errors, tested OK.&nbsp;

Forum Discussion

Geolocation irule with HTTP response

2 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Failing over Virtual F5 VE to DR location using Zerto

Failing over of a Virtual F5 configuration to another location using Zerto restore process

F5 Networks F5CAB1 Exam - Need Help Regarding Prep

Username is not filled in EdgeClient in the Modern customization

The GSLB pool is providing an incorrect IP to end users

Related Content

F5 iRule Geolocation restriction

Edge to Pulse: IP Geolocation Database Migration

BIG-IP Geolocation Updates – Part 1

BIG-IP Geolocation Updates – Part 7

BIG-IP Geolocation Updates – Part 2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS