Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

PEM Policy Rule - Custom Syntax

dudster83
Nimbostratus
Nimbostratus

‎01-Jul-2021 14:26

Hello

I want to change a PEM policy rule.

Instead of adding source or destination IPs in the flow section, I want to use the custom option to point to a data group of the IP addresses.

This is due to the fact I have lots of IP addresses in the source\dst and some repetitive rules that the protocol and action differentiate one from another, so pointing to a shared data group of IP addresses from a single point makes sense to me, to avoid mistakes.

The thing is, I couldn't find anywhere the syntax of pointing to a data group

 

Thanks in advanced for any help.

Labels:
0 Kudos
1 REPLY 1

Nikoolayy1
MVP
MVP

‎06-Jul-2021 23:52

I admit that I have not worked so much with PEM but you can see (sections Creating Custom Classifications and Configuring PEM with Local Traffic Policies😞

 

 

AskF5 | Manual: BIG-IP Policy Enforcement Manager: Implementations

 

 

 

As you can use data groups in irules and local traffic policies and if possible do what you want from there:

 

 

class (f5.com)

 

AskF5 | Manual Chapter: Introducing Local Traffic Policies

0 Kudos
Copyright © 2023 Khoros, LLC