iRule - ACL - source ip and port

Question

i am trying to setup an iRule to allow a specific group of IPs and now i need to add access to only a specific port.. what is the command for the port?? the current iRule for ports is below - 
 this event is triggered when a client - BIG-IP TCP connection is established
when CLIENT_ACCEPTED {

Check if the client IP is not part of the datagroup hosts/networks
   if { not ([matchclass [IP::client_addr] equals allowed-servers]) }{
       Log dropped requests
      log local0. "Denied Access-servers: [IP::client_addr]"

drop the request
      discard
   }
}

jgranieri · Answer

You can also use matchclass for ports as well:  something like this:
 Check to see if the destination port is allowed
if { [class match [TCP::local_port] equals Name_of_Data_group] }{

Forum Discussion

iRule - ACL - source ip and port

1 Reply

Recent Discussions

MAC address not showing up in LLDP packet

F5Access | MacOS Sonoma

Active- Active HA setup

syslog server connection

Cannot see floating MAC address outside of ESXi

Related Content

How to ensure source address and source port are accepted and traversed properly via F5 SNAT automap

Assistance with iRule using port ranges

I need an irule to decline/refuse/ an incomming tcp session from a source to a vip (ip address/port)

irule ports

Multiple Port Load Balancing