how to use [IP::client_addr] match one subnet

Question

hi,dear irule&nbsp;
&nbsp;if { [IP::client_addr] not equals 10.0.0.0/8 } {
&nbsp;xxxxx&nbsp;
&nbsp;}&nbsp;
&nbsp;how to achieve this? it is a segment with network mask&nbsp;&nbsp;

nitass · Answer

can you try this? 
  
 [root@ve1023:Active] config  b rule myrule list
rule myrule {
   when CLIENT_ACCEPTED {
        log local0. "[IP::client_addr]"
        if {not [IP::addr [IP::client_addr] equals 172.28.19.0/24]} {
                log local0. "[IP::client_addr] does not match 172.28.19.0/24"
        } else {
                log local0. "[IP::client_addr] matches 172.28.19.0/24"
        }
}
}

Dec  1 21:22:54 local/tmm info tmm[23027]: Rule myrule : 172.28.19.80
Dec  1 21:22:54 local/tmm info tmm[23027]: Rule myrule : 172.28.19.80 matches 172.28.19.0/24

Forum Discussion

how to use [IP::client_addr] match one subnet

1 Reply

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

Difference between IP::client_addr and IP::remote_addr

Using Client Subnet in DNS Requests

APM IP Subnet Match - single IP list

Implementing Client Subnet DNS Requests

Remove subnet from NAT pools without any impact