iRule to allow private IP and reject public IP

Question

I am new to using iRules. What I’m looking to do is to restrict a page to only be accessible from a private IP address range, and reject connections from all public IP addresses.&nbsp;
&nbsp;
I used the rule below that I found on this forum, however it didn't work 100%. It was successful in allowing private address and restricting public address, however the VIP that is using this rule is hosting multiple websites. When using this rule the restriction is set on all websites, not the one I specifically need it for. How can I modify this to address the issue?&nbsp;
&nbsp;
 &nbsp;
&nbsp;
when HTTP_REQUEST {&nbsp;
&nbsp;
    if { [HTTP::host] equals "www.website.com" and ([matchclass [IP::remote_addr] equals $::PoolOfAllowedAddresses ]) } {&nbsp;
&nbsp;
        pool poolofallowedservers&nbsp;
&nbsp;
    }&nbsp;
&nbsp;
    else {&nbsp;
&nbsp;
        reject&nbsp;
&nbsp;
    }&nbsp;
&nbsp;
}&nbsp;
 &nbsp;

chris_phillips · Answer

you should just need a slilght change in logic: 
  
 when HTTP_REQUEST {

if { [HTTP::host] equals "www.website.com" and ! ([matchclass [IP::remote_addr] equals $::PoolOfAllowedAddresses ]) } {
        reject
    }
    else {
        pool poolofallowedservers
    }
}

Forum Discussion

iRule to allow private IP and reject public IP

1 Reply

Recent Discussions

preserve client IP on layer 4 VIP

Failed to convert character dclid=%EDclid!

ASM - Parent policy vs OWASPcompliance

Rewrite uri translation not working

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

Related Content

Enriching AFM with public domain Threat Intelligence

SSLO in public cloud: Azure inbound L3 use case

one private ip nat with 40 public ip address

BIG-IP Orchestrate in private Data Center using Terraform Cloud Agent

Public Cloud Simplified with F5 NGINXaaS for Azure