UDP Payload Rule

Question

I would like to stop this account name (azbycx) from hitting my radius servers. Instead of using a pool, can I simply reject the request? See below. Thanks, Ken&nbsp;
&nbsp;when CLIENT_ACCEPTED {
&nbsp;  if { [UDP::payload []] contains "azbycx" } {
&nbsp;    pool Switch_6k
&nbsp;}}&nbsp;&nbsp;
&nbsp;Example tcpdump of radius user auth attempt:
&nbsp;12:30:39.006738 192.168.1.3.1024 &gt; 192.168.1.4.radius:  rad-access-req 65 [id 54] Attr[  User{azbycx} NAS_ipaddr{192.168.1.4} EAP_msg{.6} [|radius]&nbsp;&nbsp;

colin_walker_12 · Answer

Sure, if you want to reject the request all you'd need to do is change the pool statement to a reject statement.
when CLIENT_ACCEPTED {
  if { [UDP::payload] contains "azbycx" } {
    reject
  }
}
Colin

ken_wolff_10732 · Answer

Using that iRule I'm getting the following log message:&nbsp;
&nbsp;&lt;131&gt;Sep 20 11:08:01 tmm tmm[838]: 01220001:3: TCL error: Rule Reject  - expected integer but got ""     while executing "UDP::payload&nbsp;
&nbsp;Thanks, Ken

Forum Discussion

UDP Payload Rule

Recent Discussions

Default retry time inband monitor

how to monitor the axfr master response

Http / https health monitor issue

I used the wrong email account when take Application Delivery Exam (101)

F5 looses the token for the first call

Related Content

UDP TCP Packet Duplication

F5 Distributed Cloud Origin Server Subset Rules

Irule to insert source IP in UDP payload

HTTP Payload Collection

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS