Forum Discussion

Nimbostratus

Apr 01, 2009

Reflexive irule ACL?

We have a linkcontroller and we would like to see if there is a reflexive type irule that can allow connections initiated/sourced from one host 10.3.3.3 to 10.4.4.4, but not connections initiated/sour...

Nimbostratus

Apr 01, 2009

I suppose you can create the iRule that looks like the following

 
 when CLIENT_ACCEPTED { 
   if { [matchclass [IP::client_addr] equals $::Hosts]} { 
     forward 
   } else  { 
     drop 
   } 
 }

Hope this helps

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Reflexive irule ACL?

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Checking for X-Forwarded-For against an Address Data-Group

SSL Bridging and FQDN rewrite Policy

Cisco TACACS+ Config on ISE LTM Pair

iRule causing requests to be duplicated (sometimes)

How can I get started with iCall

Related Content

Protect your applications using F5’s Distributed Cloud and Fast ACL’s

APM Security: Protecting Internal Resources Using ACLs

iRules Style Guide

How to change ACL forbidden page?

Managing Model Context Protocol in iRules - Part 3

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS