How to configure an iRule to allow one particular host to have a different TCP profile ?

Question

Hi Forum, I am new to F5. I need to confgure an iRule which would allow one particular host to have unlimited TCP connection to a virtual server. Logically I know what is required but I am not familiar with the iRule syntax. Your help would be much appreciated. Please see below a pseudocode of what I am trying to achieve. class unlimited_TCP_timeout_client { host x.x.x.x } when CLIENT_ACCEPTED {  is client IP address defined in the Unlimited TCP timeout group? if { [matchclass [IP::client_addr] equals $::unlimited_TCP_timeout_client] } {  Use TCP profile 'Customised to unlimited timeout' } else { Use TCP profile 'Default' } }

hoolio · Answer

That's a great start.  Rather than specifying a new TCP profile, you can set the IP idle timeout from the iRule using IP::idle_timeout.  There are a couple of examples on the wiki page: 
&nbsp;  
&nbsp; http://devcentral.f5.com/wiki/default.aspx/iRules/IP__idle_timeout.html 
&nbsp;  
&nbsp; Aaron

hoolio · Answer

I think you'll want to set the idle timeout for both the client and serverside connections. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

How to configure an iRule to allow one particular host to have a different TCP profile ?

2 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Cisco TACACS+ Config on ISE LTM Pair

How can I get started with iCall

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

iRule causing requests to be duplicated (sometimes)

Related Content

wccp configuration for SSL Orchestrator

F5 BIG-IP Advanced WAF – DOS profile configuration options.

APM Configuration to Support Duo MFA using iRule

BIG-IP vWire Configuration

Virtual-wire Configuration and Troubleshooting

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS