Whitelist certain inbound IPs

Question

Could someone verify if this syntax is correct, please?&nbsp;I am looking to only permit certain source IPs contained in the data group "abc_ips" when navigating to a URL and dropping anything else.&nbsp;&nbsp;&nbsp;&nbsp;when HTTP_REQUEST {
	if { [class match [IP::client_addr] eq "abc_ips" ] } { 
		return
	} else {
		drop
	}
  }&nbsp;&nbsp;&nbsp;&nbsp;

mayur_sutare · Accepted Answer

Hi&nbsp;PG0581&nbsp;,
Yes, syntax looks good to me. Additionally, you can even add the response page with some message to the unwanted source IP addresses who are trying to access it.&nbsp; Just a suggetion in case you need it. Thanks!

pg0581 · Answer

Great! and thanks for the feedback&nbsp;Mayur_Sutare&nbsp;

Forum Discussion

Whitelist certain inbound IPs

2 Replies

Recent Discussions

vulnerabilities-CVE-2020-16150 & CVE-2013-0169

google autenticator broken barcode

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

Related Content

SSLO in public cloud: Azure inbound L3 use case

F5 BIG-IP SSLO in public cloud: AWS inbound L3 use case

SSL Orchestrator Advanced Use Cases: Inbound Authentication

SSL Orchestrator Use Case: Inbound SNI Switching

Global Blacklist or Whitelist