Whitelist IP in F5 based on URL

Question

Hi All,I have a public domain which is exposing several APIs and being accessed by many partners. This state should remain as-is.Now, there is another API which should only be accessed by IPs which are in my whitelist IPs list without any impact to above mentioned API traffic.For example:[1] /path/to/api1 -- &gt; can only be accessed by IP1 , IP2, IP3...[2] other apis --&gt; no restriction&nbsp;

mayur_sutare · Answer

Hi&nbsp;gauravk&nbsp;,
You can try below iRule. Here "Allow-List"&nbsp;is a IP type of DataGroup.
&nbsp;
when HTTP_REQUEST {
if {[HTTP::uri] eq "/path/to/api1"} {
if {![class match [IP::client_address] equals Allow-List]} {
HTTP::respond 403 content "&lt;html&gt;&lt;body&gt;Access not permitted&lt;/body&gt;&lt;/html&gt;" Connection Close
TCP::close
}
}
}

&nbsp;
Hope it helps!

gauravk · Answer

Thanks&nbsp;Mayur_Sutare&nbsp;I will try this solution. May I know what is the difference between client_address and remote_addr. which one should be used ideally to get the client IP in order to be used in IP whitelisting.Regards Gaurav

Forum Discussion

Whitelist IP in F5 based on URL

2 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

URL based redirection

iRule for IP Whitelist on specific URL

Request client cert auth based on URL

Doing mTLS Authentication per URL

Demystifying Time-based OTP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS