Forum Discussion

Nimbostratus

Feb 09, 2010

iRule to mimic Cisco ACL for Forwarding VIP

Hi All, Can somebody please help me write an iRule that will permit/deny the outside world from accessing the real servers behind the F5??? For example I have an inside_v...

Cirrostratus

Feb 10, 2010

Can you make a copy of the iRule to use just for the port 80 VIP and remove the forward command from that version?

Requests from untrusted clients will be dropped and all others will go to the VIP's default pool. The forward command stops LTM from doing destination address translation and sends the request out according to the routing table.

You can check the /var/log/ltm log file for output from iRules logging to local0. 'tail -f /var/log/ltm' allows you to watch the end of the ltm log file. Type Ctrl+c to stop the tail command from running.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to mimic Cisco ACL for Forwarding VIP

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Azure Virtual Machine Scale Set (VMSS) with F5 LTM

Change severity for sod log messages

Rewrite content in XML schema file.

F5 APM Check Domain Membership

Question regarding F5 Viprion Configuration Migration to VE.

Related Content

BIG-IP DNS Forwarder Support via iRule

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

iRule to Forward Traffic Based on URL Name

Help with X-Forwarded-For iRule

iRule for AFM IP Intelligence security policy to work with HTTP XFF (X-Forwarded-For) headers

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS