Permit specif IPs to pools, all others see a simple maintenance page

Question

I have an iRule set up to redirect to specific pools depending on uri.  Now maintenance is being done and only specific IPs need to be allowed to sites, all other get a simple web page that the site is down.&nbsp;
when HTTP_REQUEST {
  switch  -glob [string tolower [HTTP::uri]] {
     "/jumper" {
     pool tango.golf_TGIIS_Https_Pool
     log local0. "redirect irule pool tango.golf_TGIIS_Https_Pool"
    }
    "/" -
    "/annie" -
    "/bugg" -
    "/charles" -
    "/dog" -
    "/fashion" -
    "/golf" -
    "/harry" -
    "/ink" -
    "/jonas" -
    "/kegg" -
    "/limber" -
    "/micro" -
    "/nosehair" -
    "/orange" -
    "/pinky" -
    "/queen" -
    "/romeo" -
    "/survey" -
    "/tango" -
    "/useless" -
    "/valve" -
    "/whiskey" -
    "/xray" -
    "/yonkers" -
    "/zulu" -
    "/poolball*" {
      pool waterpolo_WPIIS_Https_Pool
      log local0. "redirect irule pool waterpolo_WPIIS_Https_Pool"
    }
    default {
      pool skijump_SKJWEB_Https_Pool
      log local0. "redirect irule pool skijump_SKJWEBHttps_Pool"
    }
  }
}&nbsp;
I've set up a Datagroup list with the IP's in it.  I just need assistance allowing only the ips in group to the site, while sending all others to the simple website down page.  I have an irule for that also.&nbsp;

john_alam_45640 · Answer

Can you re-post your question.

This time add a couple of empty lines before and after your iRule, then highlight the irule and press CTRL-K.

thomas_gobet · Answer

You can add the data group condition at the first line of your iRule.
For example : 
when HTTP_REQUEST {
    if { not ( [class match [IP::client_addr] equals my_ip_datagroup] ) } {
        reject
    } 
    switch -glob [string tolower [HTTP::uri]] { 
        "/jumper" { 
            pool tango.golf_TGIIS_Https_Pool 
            log local0. "redirect irule pool tango.golf_TGIIS_Https_Pool" 
        } 
        "/" - "/annie" - "/bugg" - "/charles" - "/dog" - "/fashion" - "/golf" - "/harry" - "/ink" - "/jonas" - "/kegg" - "/limber" - "/micro" - "/nosehair" - "/orange" - "/pinky" - "/queen" - "/romeo" - "/survey" - "/tango" - "/useless" - "/valve" - "/whiskey" - "/xray" - "/yonkers" - "/zulu" - "/poolball*" { 
            pool waterpolo_WPIIS_Https_Pool 
            log local0. "redirect irule pool waterpolo_WPIIS_Https_Pool" 
        } 
        default { 
            pool skijump_SKJWEB_Https_Pool 
            log local0. "redirect irule pool skijump_SKJWEBHttps_Pool" 
        } 
    }
}

Forum Discussion

Permit specif IPs to pools, all others see a simple maintenance page

2 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

F5 Maintenance Page

Disabling Specific Weak Cipher Suites

iRule HTML Maintenance Page insert URI Value

iRules Recipe 4: Static Maintenance Page

find specific SNMP OID