How to add multiple ipadresses as source voor VIP

Question

I want to restrict our SMTP server that is offered through BigIP LTM 11.3&nbsp;
I only want a list of 20 servers (ipaddresses)  to be able to use SMTP (relaying)&nbsp;
I cannot restrict it on our Exchange servers because they only see te loadbalancer IP address.&nbsp;
In the source field of the VIP i only can enter 1 subnet.&nbsp;
that subnet can containt 1 server or several servers on that particular subnet.&nbsp;
How can I enter a list? iRules?&nbsp;

kevin_stewart · Answer

There's at least two good ways to do it, if not more. 
  
 1. Packet filter configuration - under Network settings, this allows you to define a TCPDUMP-like filter of allowable source and destination addresses. 
  
 2. An iRule and a data group - the easier option, create an address-based data group and enter your desired source IPs or IP subnets. Then create an iRule similar to this one: 
 
when CLIENT_ACCEPTED {
if { not [class match [IP::client_addr] equals test_iplist_datagroup] } {
reject
}
}

Forum Discussion

How to add multiple ipadresses as source voor VIP

1 Reply

Win Big in Vegas: The iRules Contest is back with $5k on the line at AppWorld 2026

Jürgen - February 2026 Featured Member

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

F5 APM irule to log the VPN session parameters

DNS topology not distributing as expected

GRE Tunnel Issue

F5 DNS Express

Struggling with web GUI usability with links in new tabs

Related Content

Using n8n To Orchestrate Multiple Agents

Multiple source address on virtual server

Phishing, Malware, Breach and Open-Source Security

The Power of Source Address

Double Trouble: Multiple Controllers Handling the Same Kubernetes LoadBalancer Service

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS