Andrea_361
Oct 22, 2009Nimbostratus
URI access restricted to ip subnet
hi people,
I have F5 running version 9.4.7 , I try to implement iRule in order to limit access to defined URI only to internal subnet, but i'm unable to obtain the correct result, the URI is allowed or denied without care on ip class and subnet defined.
Anyone can check my iRule syntax, and/or give me suggestion?
Thanks in advance!
the following is my iRule script:
when HTTP_REQUEST { if { [HTTP::uri] starts_with "/cms/" }{ if {not [matchclass [IP::client_addr] equals $::Agusta_internal]} { log local0. "[IP::client_addr]:[TCP::local_port]: Matched IP check. Discarding request to [HTTP::uri]" drop } } }