Difficulty question

Question

I need to provide a way to control access from specific source networks through a virt to destination nodes in a pool and allow only specific ports to those nodes. Due to the way this particular application works there will be database servers required on the same subnet that support this application.  The database servers are not allowed to be contacted by any system other then the application servers.  Essentially I'm trying to build and "ACL" for specific host ips and ports that permits access to the app servers, but denies all other access to the database server.  I was told the best way to do this is via iRules.  How difficult is this to accompliah considering I'm a new guy to iRules? 
&nbsp;  
&nbsp;  
&nbsp; Thanks for the input!

hooleylist · Answer

There is a Codeshare example which implements similar ACL type functionality as what you've described: 
&nbsp;  
&nbsp; Access Control Based On Network Or Host (Click here) 
&nbsp;  
&nbsp; You could try modifying that rule to suit your requirements. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Difficulty question

1 Reply

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Health monitor question

F5 Connection Mirroring question

Novice Question - irules

irule logging question

Overlapped Networks Question