F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Tyson_James's avatar
Tyson_James
Icon for Cirrus rankCirrus
Sep 20, 2018

iRule to only allow private networks....

Hi, I have an iRule in place that is supposed to be rejecting all external network traffic coming into an LTM virtual server for a few select administrative pages. Someone on DevCentral had done som...
application delivery
BIG-IP
iRules
ItayG_188662's avatar
ItayG_188662
Icon for Nimbostratus rankNimbostratus
Sep 20, 2018

Maybe this clients are behind NAT? you can check it by adding log to the iRule:

when HTTP_REQUEST {
  switch -glob [string tolower [HTTP::uri]] {
    "*/wp-admin/*" -
    "*/wp-login.php" -
    "*/phpmyadmin/*" -
    "*/wp-config.php" {
      if { !([class match [IP::client_addr] equals private_net])} {
      log local0. "rejected client ip [IP::client_addr]" <-- new added line
         reject
      }
    }
  }
}

and check which IP do you see in /var/log/ltm

good luck!