Forum Discussion

ringoseagull_77's avatar
ringoseagull_77
Icon for Nimbostratus rankNimbostratus
Jan 24, 2013

Block all traffic except from specific list of IPs?

I'm setting up Office365 on our 10.2.4 prod 1500's. The Exchange team would like an SMTP gateway added, similar to what we current;y have in place, but which only allows access from a list of specific IP addresses (the federation servers etc). Is there a simple way to do this, with an irule perhaps? Thanks.

 

3 Replies

  • Packet filters are also an option but no-one seems to like them here at DC =] Here's an example iRule;

    
    Create a Data Group (called source-ips below) with just the IP addresses 
    of the hosts you’d like to accept
    
    when CLIENT_ACCEPTED {
     if { not [class match [IP::client_addr] equals source-ips] } {
       reject }
    }