For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

bsb's avatar
bsb
Icon for Nimbostratus rankNimbostratus
Jun 12, 2018

irule for specific pools

Team, would like to configure an irule to redirect based on client ip's.   when HTTP_REQUEST { if { [matchclass [IP::client_addr] equals 1.1.1.0/24] } { do nothing. } elseif...
application delivery
LTM
oguzy_191375's avatar
oguzy_191375
Icon for Nimbostratus rankNimbostratus
Jun 12, 2018

Hi,

If you do not want to create a data group, you can try the below one:

when HTTP_REQUEST { 
    if { [IP::addr [IP::client_addr] equals 1.1.1.0/24] } {
         do nothing
    } elseif { [IP::addr [IP::client_addr] equals 2.2.2.0/24] } { 
        HTTP::redirect "https://www.test.com"; 
    } 
}
bsb's avatar
bsb
Icon for Nimbostratus rankNimbostratus
Jun 12, 2018

Missed one part, LTM is behind proxy which hides the incoming client ip, tried below option, still didn't work.

 

i am trying to access the site from 2.2.2.x network and instead of redirect, posting a custom message

 

when HTTP_REQUEST { HTTP::header insert X-Forwarded-For [IP::remote_addr] if { [IP::addr [IP::client_addr] equals 1.1.1.0/24] } { do nothing } elseif { [IP::addr [IP::remote_addr] equals 2.2.2.0/24] } { HTTP::respond 503 content {

 

} } }