F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Karthickkarunak's avatar
Karthickkarunak
Icon for Nimbostratus rankNimbostratus
Mar 12, 2020

Help required to know how to configure irule for below scenario

  When users sourced from IPs (FqDn "outlook.office365.com") hits below 2 URLs the traffic should be redirected to pool "abc.yyy.com443" , if users sourced from out of that FqDn range hitting thes...
application delivery
BIG-IP
iRules
Mayur_Sutare's avatar
Mayur_Sutare
Icon for MVP rankMVP
Mar 13, 2020
  1. If you want to allow access to specific source IP addresses/subnet, the most secure way is to do it using IP filter rules/ASM. You can alternately do this with an iRule and data group. Create an address-based data group (ex.allowed_IPs) and add the allowed IPs/subnets in it.

 

when CLIENT_ACCEPTED {

if { not ( [class match [IP::client_addr] equals allowed_IPs] ) } {

reject

}

}

 

2. If your url 'abc.yyy.com' is same then you can directly bind pool "abc.yyy.com443" to VS associated with this URL. So all requests hitting to given URL (irrespective of URI part), request will go to same pool.

 

Hope it helps you!

 

Mayur