What would be the best recommended way to block a single internal server sitting behind a Big-IP from going thru it to access the Internet? I have a forwarding Virtual server for all internal resources to access external sites. Could this be done with an iRule or am I thinking too complicated? Thanks!
No need for an irule for this. You can use Packet Filter in the network menu. Make it default to allow all and add a specific rule to reject the single server.