HTTP Request Throttle by IP and UserAgent

Problem this snippet solves: This is a modification of Kirk Bauer's iRule found here: https://devcentral.f5.com/codeshare/http-request-throttle The modification is for rate limiting individual IP...
Published Mar 15, 2017
Version 1.0
BIG-IP
iRules
security
Dazzla_20011's avatar
Dazzla_20011
Icon for Nimbostratus rankNimbostratus
Mar 25, 2019

@Geg, thanks I'm probably being thick but what we're looking for is to be able to rate limit all requests but for certain ip addresses these not to be ratelimited (such as internal IP's). Looks as though this is specifying a list of IP's to rate limit?

 

Also I'm not fully understanding the purpose of the ratelimiteduseragents and why we would use it.

 

Wouldn't we need an additional data group too sec_whitelist? Also what does this do.

 

Came across this as our partner was asking £11K to create an i-rule to limit the requests to a service 10 requests in a 2 minute window from each source ip address. If I get this working it will go down very well.

 

As you can guess I've very limited experience of i-rules.

 

Any help much appreciated.

 

Many Thanks