Forum Discussion
nitass
Mar 06, 2016Employee
I used to use this rule (which I grabbed from here) on version 9 to detect and alert on IP addresses making excessive connection to VIPs. I was wondering if anyone could help me optimize it for version 11.6.
This example should only be used on v9. For v10 or higher, use the session table to track the client connections. See the first example in the table wiki page for one way to do this.
table command - https://clouddocs.f5.com/api/irules/table.html
I would like the "whitelist" to be a data group if possible.
you may check client ip against ip data group using class match command. when matching, exit from irule (i.e. "return" command).
class command - https://clouddocs.f5.com/api/irules/class.html