Jason_Tan_40947
Feb 24, 2010Nimbostratus
Covert ServerIron ACL into LTM iRule
Hi,
I am a beginner and need to migrate from ServerIron to F5 LTM. In the ServerIron, it has the following iRule:
(1) ip filter 1 deny 172.30.0.0 255.255.248.0 172.0.0.0 255.0.0.0 tcp eq http
(2) ip filter 2 deny 172.30.0.0 255.255.248.0 any tcp eq http
(3) ip filter 17 deny any 172.22.88.253 255.255.255.255 tcp eq http
Basically the rule above will not intercept the traffic and just forward the traffic.
I have tried using the following iRule for (2)
when CLIENT_ACCEPTED {
if { [matchclass [IP::client_addr] equals $::HTTP_bluecoat_bypass ]} {
forward
}
else {
pool [LB::server pool]
}
}
Please advise how I can include (1) & (3) into the iRule above.
Thanks!