local traffic policy operand for source ip address?

Question

11.5.1 HF7.&nbsp;
Only licensed for LTM... am I missing something here?&nbsp;
Just want to whitelist a small list of networks and block access to the rest for a specific vip.
 Yes I know I can use an irule, an irule with a data group, or a packet filter.  http class seemed to be an easy way to do this in a more structured, easy to edit for those less experienced way.
 Those gave way to local traffic policies, but I can't seem to find an operand for that.&nbsp;
Do I need to upgrade, or is this sort of thing moved into a different module now?  Or are my choices irules or packet filters?&nbsp;
thanks!&nbsp;

stewart · Answer

Hi Antonio, &nbsp;
You should be able to put the source addresses into the source field in the Virtual Server.&nbsp;
Thanks, 
Stewart.&nbsp;

gsharri · Answer

I don't think this is possible with a local traffic policy. There are no IP-based operands. I see that the TCP operand has an "address" selector (v11.6) but there is no documentation on it's use and I recieved an error attempting to configure it with an IP address. It's down to packet filter, iRule, or AFM if you're licensed for that.

Forum Discussion

local traffic policy operand for source ip address?

2 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

fellow traffic

Decoding the IPv4 address from the persistence cookie

CSV to Address External Datagroup File

SNAT IP address logging

Block traffic