Multiple Source IP address restriction using irule

Question

Hi ,&nbsp;
We have one test site which will go online soon and need them to be publicly accessible for some external testers. But we don't want the entire world to see the sites until they're ready for launch. Is there any way to restrict access to the sites via multiple source IP address using iRules?&nbsp;

niels_van_sluis · Answer

Yes, that is possible. You can find a good example here:&nbsp;
https://devcentral.f5.com/questions/restrict-access-to-virtual-servers-based-on-ip-address&nbsp;

f5_jeff · Answer

you can create a data group (list of allowed IP) then apply an irule something like this&nbsp;
when CLIENT_ACCEPTED {
   if { not ( [class match [IP::client_addr] equals  ] ) } {
      reject
   }
}&nbsp;

Forum Discussion

Multiple Source IP address restriction using irule

2 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Enabling AVR and creating Profiles

Get associated pool name from VIP IP using F5-LTM

Disacard SSL::cert mode to ignore when default SSLClient profile is set to request or require

About custome Response Blocking Page

Related Content

Restricting Access to Virtual from client IP address in X-Forwarder-For HTTP header

SSL Orchestrator Advanced Use Cases: Enabling GCloud Organization Restrictions

Restricting access to a virtual server by Public IP address should access through only domain name.

Decoding the IPv4 address from the persistence cookie

CSV to Address External Datagroup File