geolocation blocking

Question

using an irule to determine geolocation and block&nbsp;

boneyard · Answer

you want one? you have one?&nbsp;
if you want one perhaps you should google a bit first, it isn't that hard.&nbsp;

lee_sutcliffe · Answer

Damn these Russian bots&nbsp;

ashwin_venkat · Answer

Hello Lindsay,&nbsp;You can use an iRule or also an LTM policy in order to filter for traffic based on geolocation and reject them. An iRule gives you the opportunity to drop the traffic, so the malicious/suspicious user won't know whether or not their request made it to the end destination. For example, if you want to reject/drop suspicious traffic from Iran, you can use an iRule like this:&nbsp;when CLIENT_ACCEPTED {
    if {[whereis [IP::client_addr] country] == "IR"} { 
        drop
    }
}For more info on the "whereis" command: https://devcentral.f5.com/wiki/iRules.whereis.ashx&nbsp;The country code you specify for the whereis command within the iRule or the LTM policy is based on ISO-3166-2: https://en.wikipedia.org/wiki/ISO_3166-2&nbsp;

Forum Discussion

geolocation blocking

3 Replies

Recent Discussions

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries HA

Need advise to setup a policy on F5

Related Content

allow one url from blocks geolocation

Edge to Pulse: IP Geolocation Database Migration

BIG-IP Geolocation Updates – Part 1

BIG-IP Geolocation Updates – Part 3

BIG-IP Geolocation Updates – Part 2