iRule help

Question

We need to configure iRule datagroup with a list of domains referenced by iRule that would allow web access (port 80 if it does matter) based on this list. If the host header does not match list, access should not be permitted.&nbsp;
My assumption is like below, please correct if anything is missing. Thanks.&nbsp;
when HTTP_REQUEST {
  if {class match [string tolower [HTTP::header "User-Agent"] contains ]}
       pool
    else
     none
}&nbsp;

yann_desmarest · Answer

Hi,
The datagroup name is missing and you are getting the User-Agent instead of the Host header, and a couple of syntax issues. Below a valid example. You need to have a string based datagroup named "MY_DATAGROUP_NAME" : 
when HTTP_REQUEST { 
    if { [class match [string tolower [HTTP::header "Host"] equals MY_DATAGROUP_NAME] } {
        pool mypoolname
    } else {
          you can use drop, reject or HTTP::respond command
        reject 
    }

Forum Discussion

iRule help

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

can you help with getting a BigIP virtual edition serial key

VIP in https that redirect to another vip in https

In Using the AST tool am I pointing it to TENANTS or to the F5OS(hardware) I have?

2026 is Almost Here

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

Related Content

iRules Style Guide

Managing Model Context Protocol in iRules - Part 3

Managing Model Context Protocol in iRules - Part 1

Re: F5 HTTPS Redirect iRule Update

Hey DeepSeek, can you write iRules?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS