Source IP Allow to VS then URI Rewrite

Question

I need help with the syntax for irule I'm trying to use on a shared HTTPS VS.
I need to check the SRC IP allowed using a data group created, then if found proceed to URI rewrite from test to dev.  I can get the rewrite irule to work, but not able to combine the two functions.&nbsp;
when CLIENT_ACCEPTED {
    if { not ( [class match [IP::client_addr] equals IP_Allow_Data_Group])}
 {
        reject
}
when HTTP_REQUEST {
    log local0. "Incoming URI = [HTTP::uri]"
    if { [string tolower [HTTP::uri]] starts_with "/test" } {
        set uri [string map -nocase {"/test" "/dev"} [HTTP::uri]]
        log local0. "New URI = $uri"
        HTTP::uri $uri
          SSL::disable serverside  &nbsp;
           pool webtest-test.com-80
        }
}&nbsp;

r_eastman_13667 · Answer

Try this:
when HTTP_REQUEST { 
    log local0. "Incoming URI = [HTTP::uri]" 
    if {[class match [IP::client_addr] equals "IP_Allow_Data_Group"]} {
        if { [string tolower [HTTP::uri]] starts_with "/test" } { 
            set uri [string map -nocase {test dev} [HTTP::uri]]
            log local0. "New URI = $uri" 
            HTTP::uri $uri 
            SSL::disable serverside
            pool webtest-test.com-80 
        } 
    }
    else {
        HTTP::close
    }
}

joe_5599_134300 · Answer

Yes the syntax is now ok but do I need a (reject) if no match in the data group IP's allowed? Or a default action of reject at the end?

r_eastman_13667 · Answer

I added an HTTP::close command in an else conditional statement in the above code.

Forum Discussion

Source IP Allow to VS then URI Rewrite

3 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

How to rewrite the source IP address to an URL

URL rewrite

Rewriting iRules...LIVE!

Rewriting Redirects

F5 XC vk8s open source nginx deployment on RE