logging only when statment is true.

Question

Hi,&nbsp;
I am using the following irule that works perfectly but I would like to insert a log local statement that only logs if an attempt is made that does not meet the IP list (a log on the blocking essentially).  Can someone please help me with the syntax to do so?&nbsp;
when HTTP_REQUEST { 
 if { [string tolower [HTTP::path]] contains “/blah” } { 
  if { ! [class match [IP::client_addr] equals allowed_IPs]} { 
   discard 
  } 
 }
}&nbsp;

nitass · Answer

e.g.
when HTTP_REQUEST { 
  if { [string tolower [HTTP::path]] contains "/blah" } { 
    if { ! [class match [IP::client_addr] equals allowed_IPs]} { 
      log local0. "[IP::client_addr]:[TCP::client_port] does not match the allowed IP list"
      discard 
    } 
  } 
}

Forum Discussion

logging only when statment is true.

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Solving for true-source IP with global load balancers in Google Cloud

Akamai True-Client-IP Header Persistence

Logging DNS Requests

ASM logs

How I did it - "Remote Logging with the F5 XC Global Log Receiver and Elastic"

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS