Forum Discussion
Kevin_Stewart
Employee
Jul 23, 2015Two options:
-
Create a 0.0.0.0/0 source and use an iRule to control access:
when CLIENT_ACCEPTED { if { ( [IP::addr [IP::client_addr] equals x.x.x.x/x] ) or ( [IP::addr [IP::client_addr] equals y.y.y.y/y] ) } { return } else { reject } }
or you can use a datagroup:
when CLIENT_ACCEPTED { if { [class match [IP::client_addr] equals my_ip_datagroup] } { return } else { reject } }
-
Create the same 0.0.0.0/0 source and use a system-level IP filter to control source range access.