Forum Discussion
NimbostratusIrule Help
Dears,
Need some help on the F5 configuration. The requirements are: 1.Do not apply URI redirect if the request is coming from a particular subnet. 2.Apply URI redirect otherwise.
Tried the below Irules its not working. Please help urgent.
when HTTP_REQUEST { if { ([HTTP::uri] equals "/") and ([IP::client_addr] != "10.1.2.0/24") } { HTTP::redirect "/cams" } }
when HTTP_REQUEST { if { [IP::addr [IP::client_addr] eq 10.1.2.0/24] } { return do nothing } elseif { [HTTP::uri] equals "/" } { HTTP::redirect "/cams" }
}
when HTTP_REQUEST { if { { [IP::client_addr] = "10.1.2.0/24" } } { return do nothing } else { HTTP::redirect "http://[HTTP::host]/cams" } }
Thanks & Regards, Sam
Lee_SutcliffeNacreous
Morning, please try this iRule, it will redirect if the client IP address is not within the 10.1.2.0/24 range.
when HTTP_REQUEST { if {!([IP::addr[IP::client_addr] equals 10.1.2.0/24])} { HTTP::redirect "http://[HTTP::host]/cams" } }Please see the following link for IP::addr syntax https://devcentral.f5.com/wiki/iRules.IP__addr.ashx
- nitass
Employee
i think you had better also check uri.
e.g.
when HTTP_REQUEST { if { ![IP::addr [IP::client_addr] equals 10.1.2.0/24] and [HTTP::uri] eq "/" } { HTTP::redirect "http://[HTTP::host]/cams" } }
ssam_138429No luck. I have tried enabling logging and found the irule is not detecting the ip address.
when HTTP_REQUEST {log local0. "before ip" if { ![IP::addr [IP::client_addr] equals 10.1.2.0/24] and [HTTP::uri] eq "/" } { log local0. "after ip" HTTP::redirect "http://[HTTP::host]/cams" } }
- ssam_138429
I am getting only the "before ip" in the logs. Seems like the if condition is not matching.
- ssam_138429
Any luck or suggestions ?
nitass_89166Noctilucent
i think you had better also check uri.
e.g.
when HTTP_REQUEST { if { ![IP::addr [IP::client_addr] equals 10.1.2.0/24] and [HTTP::uri] eq "/" } { HTTP::redirect "http://[HTTP::host]/cams" } }- ssam_138429
No luck. I have tried enabling logging and found the irule is not detecting the ip address.
when HTTP_REQUEST {log local0. "before ip" if { ![IP::addr [IP::client_addr] equals 10.1.2.0/24] and [HTTP::uri] eq "/" } { log local0. "after ip" HTTP::redirect "http://[HTTP::host]/cams" } }
- ssam_138429
I am getting only the "before ip" in the logs. Seems like the if condition is not matching.
- ssam_138429
Any luck or suggestions ?
Stanislas_Piro2Cumulonimbus
iRule provided by Nitass may work. I guess there is a nat device between the client and the F5.
can you try this code to check client IP address (try to access to /myipaddress URL)
when HTTP_REQUEST { if { ([HTTP::uri] equals "/myipaddress") } { HTTP::respond 200 content " My IP Address Your client IP : [IP::client_addr] " noserver } }
