Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Aug 15, 2024

Header injection rule

Hello everyone. I need to make a rule that injects a header value based on the presence of specific client side IP addresses 192.168.0.1, 192.168.0.2, 192.168.0.3 Etc.. What I think it would be ...

application delivery

Aug 16, 2024

I believe the following should work for you and you shouldn't need X-Forwarded-For.

when HTTP_REQUEST priority 500 {

    if { [class match -- [IP::client_addr] equals "datagroup_name" ] } {
        HTTP::header insert proxy_action "trusted"
    }

    if { [HTTP::host] eq "myhost.mydomain.com" } {
        pool MYPOOL
    }

}

Icon for Cumulonimbus rank

Cumulonimbus

Aug 15, 2024

If your backend need to get actual source ip address, please allow x-forward-for n http profile

If any specific ips only need to pool, you have to create source group or create a irule for the allow

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming