How to add multiple ipadresses as source voor VIP

Question

I want to restrict our SMTP server that is offered through BigIP LTM 11.3&nbsp;
I only want a list of 20 servers (ipaddresses)  to be able to use SMTP (relaying)&nbsp;
I cannot restrict it on our Exchange servers because they only see te loadbalancer IP address.&nbsp;
In the source field of the VIP i only can enter 1 subnet.&nbsp;
that subnet can containt 1 server or several servers on that particular subnet.&nbsp;
How can I enter a list? iRules?&nbsp;

nitass · Answer

How can I enter a list? iRules?you can put ip addresses in data group and use "class match" irule command to check and take whatever action you want. 
&nbsp;  
&nbsp; class wiki 
&nbsp; https://devcentral.f5.com/wiki/iRules.class.ashx

a__gotink_33511 · Answer

I could not find the option to add a list of ipadbresses.&nbsp;
I found out that datagroups were (hidden?) under the iRules menu option&nbsp;
I also was looking for a easy example for an iRule&nbsp;
I found and modified one, and this works:&nbsp;
when CLIENT_ACCEPTED {&nbsp;
   if { ![matchclass [IP::client_addr] equals SMTP_Allowed_Servers] }{&nbsp;
      discard&nbsp;
   }&nbsp;
}&nbsp;

Forum Discussion

How to add multiple ipadresses as source voor VIP

2 Replies

Recent Discussions

About AWAF "Redirect URLs" in "Responses and Blocks"

ISP Bandwidth Utilization

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries HA

Geo Fence in ASM through irule for URI

Related Content

F5 Distributed Cloud – Multiple custom certificates for HTTP/TCP LB

Multiple source address on virtual server

Multiple Kubernetes Clusters and Path-Based Routing with F5 Distributed Cloud

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

F5 XC vk8s workload with Open Source Nginx