Forum Discussion

CraigWoo's avatar
CraigWoo
Icon for Nimbostratus rankNimbostratus
Sep 24, 2022

simple redirect irule based off ip

Hi All I am very new to irules as we just got our first big-ip this week and have a rookie question for you. I'm trying to redirect a sub-section of a site that I have got working with when HTTP_R...
application delivery
  • CA_Valli's avatar
    CA_Valli
    Sep 26, 2022

    Hello, how many networks do you need to match? 

    For allowing multiple client networks you'll need a data group. 

    See this example below - note that "getfield" returns a string so I'm changing the format to IP address using IP::addr .

     

    when HTTP_REQUEST {
  if {[string tolower [HTTP::uri]] starts_with "/restricted1" }{

   if { [IP::addr [getfield [IP::client_addr] "%" 1] equals "10.2.2.0/24"]}{
       #this is a sample with a static client network
       return
    } elseif { [class match [getfield [IP::client_addr] "%" 1] equals datagroup_allowed_networks] } {
    #when you have multiple subnet to match, then it is recommended to use data-group created as Address (IP) type. 
       return
    } else {
      HTTP::redirect "https://demo.com/not-allowed"
    }
}

     

CraigWoo's avatar
CraigWoo
Icon for Nimbostratus rankNimbostratus

Thanks, CA_Valli

Just the one for now, ive removed the data group for now and seems to be working will do some more testing and let you know. Thanks heaps for this

CA_Valli's avatar
CA_Valli
Icon for MVP rankMVP
Oct 07, 2022

Happy to help, if this helped resolve issue please "accept solution" for my previous message so that this thread is closed and it's easier for other users with similar problem to find it.