We have one irule to check the client system mac id at the time of endpoint verification process using of macid data-group on F5 and the irule shows log if any invalid system that means that system mac id not in f5 macid data group.
Currently the irule shows the only invalid mac id. Our requirement is show the invalid mac id with system name then it’s useful for troubleshooting purpose.
when ACCESS_POLICY_AGENT_EVENT {
if {[ACCESS::policy agent_id] == "CHECK3" } {
set macid [ACCESS::session data get "session.machine_info.last.net_adapter.list.[0].mac_address"]
ACCESS::session data set session.machine_info.last.check 0
if { [class match $macid equals macdatagroup] } {
ACCESS::session data set session.machine_info.last.check 1
}
}
log local0. "This is a not valid MAC ID = $macid"
}