Forum Discussion

Cirrostratus

Apr 28, 2010

v9 matchclass and v10 class match iRule commands

I've got a v9 irule that takes action based on whether or not the client IP address is in a data class. The v9 iRule looks like this: if { [matchclass [IP::remote_addr] equals $::allow...

Cirrostratus

Apr 28, 2010

I think the issue with using the $:: prefix for a datagroup is if you're trying to use a TCL list command with it. Instead you should use [class get v10_datagroup] to get the class contents as a list. I expect using $:: in class match or matchclass will just break CMP if the platform/module combo you're using supports it.

This should work fine in v10:

if { [class match [IP::remote_addr] equals allowed_clients] } {

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

v9 matchclass and v10 class match iRule commands

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

WAF evasion techniques for Command Injection

Power of tmsh commands using Ansible

iRules LX Logger Class

Watch Command

Bash shell and ping command on F5 rseries

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS