Forum Discussion

Cirrus

Apr 04, 2013

matching two classes - iRule 10.2.4

I have the iRule working below with just CLASS-1. I am simply trying to say CLASS-1 OR CLASS-2, but having trouble getting F5 to take it. Do I need to set a variable or something like an elseif? ...

Cirrus

Apr 09, 2013

I got this to work using the following:

set X509_subject [substr [X509::subject [SSL::cert 0]] 3 ","]
log local0. "X509-subject-CN:$X509_subject"
if { ! ( [class match $X509_subject equals CLASS-1 ] || [class match $X509_subject equals CLASS-2] ) } {
log local0. "Client dropped :$X509_subject"
drop

Forum Discussion

matching two classes - iRule 10.2.4

Recent Discussions

Disk space full - what files, folders are safe to delete?

ASM instance creation

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

Related Content

/32 IPs in Datagroup class match not matching

Class match with starts_with - Data group matching order

F5 Distributed Cloud - Service Policy - Header Matching Logic & Processing

Where is a class match list located?

No matches under XML_CONTENT_BASED_ROUTING