Forum Discussion

Nimbostratus

Feb 10, 2012

iRule to block a specific destination IP?

I have a TLM1600 (BIG-IP 10.2.0 Build) and need to block incoming traffic that is destined for a specific public IP address (not domain name). Will the following iRule work? Thanks! when HTTP_...

Employee

Feb 10, 2012

in case of using fastl4 profile.

[root@ve1023:Active] config  b virtual bar list
virtual bar {
   snat automap
   pool gateway
   destination any:any
   mask 0.0.0.0
   ip protocol 6
   rules myrule
   profiles fastL4 {}
}

[root@ve1023:Active] config  tcpdump -nni 0.0 host 8.8.8.8
tcpdump: verbose output suppressed, use -v or -vv for full protocol decode
listening on 0.0, link-type EN10MB (Ethernet), capture size 108 bytes
16:32:51.479054 IP 200.200.200.101.44154 > 8.8.8.8.80: S 26962956:26962956(0) win 5840 
16:32:51.479118 IP 8.8.8.8.80 > 200.200.200.101.44154: R 0:0(0) ack 26962957 win 0

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to block a specific destination IP?

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

F5 BIG IP laboratory license

F5 mssql health monitor failing

How can I get started with iCall

Connection Rest f5

Related Content

How to tell nginx to use a forward proxy to reach a specific destination

Destination address at F5

APM-Specific Features for Securing Your Website

Block destination IP by source IP

Increasing accuracy using Bad Actor and Attacked Destination detection

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS