{"id":720,"date":"2012-11-03T00:00:00","date_gmt":"2012-11-03T00:00:00","guid":{"rendered":"https:\/\/fir3netwp.gmsrrpobkbd.com\/2012\/11\/03\/f5-ltm-ratelimiting\/"},"modified":"2021-08-01T04:18:37","modified_gmt":"2021-08-01T04:18:37","slug":"f5-ltm-ratelimiting","status":"publish","type":"post","link":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html","title":{"rendered":"F5 LTM &#8211; Rate-limiting via iRules"},"content":{"rendered":"<p>Within this article we look at how to rate-limit traffic via the use of an iRule.<\/p>\n<div id=\"ez-toc-container\" class=\"ez-toc-v2_0_65 counter-hierarchy ez-toc-counter ez-toc-grey ez-toc-container-direction\">\n<p class=\"ez-toc-title\">Table of Contents<\/p>\n<label for=\"ez-toc-cssicon-toggle-item-66272d41b466f\" class=\"ez-toc-cssicon-toggle-label\"><span class=\"\"><span class=\"eztoc-hide\" style=\"display:none;\">Toggle<\/span><span class=\"ez-toc-icon-toggle-span\"><svg style=\"fill: #999;color:#999\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" class=\"list-377408\" width=\"20px\" height=\"20px\" viewBox=\"0 0 24 24\" fill=\"none\"><path d=\"M6 6H4v2h2V6zm14 0H8v2h12V6zM4 11h2v2H4v-2zm16 0H8v2h12v-2zM4 16h2v2H4v-2zm16 0H8v2h12v-2z\" fill=\"currentColor\"><\/path><\/svg><svg style=\"fill: #999;color:#999\" class=\"arrow-unsorted-368013\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" width=\"10px\" height=\"10px\" viewBox=\"0 0 24 24\" version=\"1.2\" baseProfile=\"tiny\"><path d=\"M18.2 9.3l-6.2-6.3-6.2 6.3c-.2.2-.3.4-.3.7s.1.5.3.7c.2.2.4.3.7.3h11c.3 0 .5-.1.7-.3.2-.2.3-.5.3-.7s-.1-.5-.3-.7zM5.8 14.7l6.2 6.3 6.2-6.3c.2-.2.3-.5.3-.7s-.1-.5-.3-.7c-.2-.2-.4-.3-.7-.3h-11c-.3 0-.5.1-.7.3-.2.2-.3.5-.3.7s.1.5.3.7z\"\/><\/svg><\/span><\/span><\/label><input type=\"checkbox\"  id=\"ez-toc-cssicon-toggle-item-66272d41b466f\"  aria-label=\"Toggle\" \/><nav><ul class='ez-toc-list ez-toc-list-level-1 ' ><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-1\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#iRule\" title=\"iRule \">iRule <\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-2\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#The_Table_Command\" title=\"The Table Command\">The Table Command<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-3\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Table_Example\" title=\"Table Example\">Table Example<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-4\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Example\" title=\"Example\">Example<\/a><ul class='ez-toc-list-level-3' ><li class='ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-5\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#How_It_Works\" title=\"How It Works\">How It Works<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-6\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Datagroups\" title=\"Datagroups\">Datagroups<\/a><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-3'><a class=\"ez-toc-link ez-toc-heading-7\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Customization\" title=\"Customization\">Customization<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-8\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Ratelimit_using_different_Attributes\" title=\"Ratelimit using different Attributes\">Ratelimit using different Attributes<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-9\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Ratelimit_using_a_single_Attribute\" title=\"Ratelimit using a single Attribute\">Ratelimit using a single Attribute<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-10\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Ratelimit_Connections\" title=\"Ratelimit Connections\">Ratelimit Connections<\/a><\/li><\/ul><\/li><\/ul><\/li><li class='ez-toc-page-1 ez-toc-heading-level-2'><a class=\"ez-toc-link ez-toc-heading-11\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Good_to_Know\" title=\"Good to Know\">Good to Know<\/a><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><ul class='ez-toc-list-level-4' ><li class='ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-12\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Memory\" title=\"Memory\">Memory<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-13\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Bugs\" title=\"Bugs\">Bugs<\/a><\/li><li class='ez-toc-page-1 ez-toc-heading-level-4'><a class=\"ez-toc-link ez-toc-heading-14\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\/#Mirroring\" title=\"Mirroring\">Mirroring<\/a><\/li><\/ul><\/li><\/ul><\/li><\/ul><\/nav><\/div>\n<h2 class=\"h3\"><span class=\"ez-toc-section\" id=\"iRule\"><\/span><strong>iRule <\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h3><span class=\"ez-toc-section\" id=\"The_Table_Command\"><\/span><strong>The Table Command<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>So that we can rate-limit traffic the iRule command &#8216;table&#8217; is used. The <a href=\"https:\/\/devcentral.f5.com\/tutorials\/tech-tips\/v101-the-table-command-the-basics\" class=\"broken_link\">table command<\/a> (as the name suggests) provides the ability to create, delete, and append tables, along with being able to define timeouts for each table entry.<\/p>\n<p>Each table that&#8217;s created contains the following columns.<\/p>\n<ul>\n<li><strong>Key<\/strong> &#8211; This is a key that is assigned to the table entry and reference during table look up.<\/li>\n<li><strong>Value<\/strong> &#8211; This is a value that is assigned to the key.<\/li>\n<li><strong>Timeout<\/strong> &#8211; This is the timeout for the key.<\/li>\n<li><strong>Lifetime<\/strong> &#8211; This is the lifetime for the key. The difference between the timeout and the lifetime value is that at the point of table look up the timeout value is reset.<\/li>\n<li><strong>Touch Time<\/strong> &#8211; This value indicates when the key entry was last touched. This value is mainly used internally.<\/li>\n<li><strong>Create Time<\/strong> &#8211; This value indicates when the key entry was created.\u00a0This value is mainly used internally.<\/li>\n<\/ul>\n<h3><span class=\"ez-toc-section\" id=\"Table_Example\"><\/span><strong>Table Example<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>Below shows an example of the table that is created.<\/p>\n<p style=\"text-align: center;\">\u00a0<em>Table :<\/em>\u00a08.8.8.8:\/database\/lookup<\/p>\n<table style=\"border-collapse: collapse; width: 669px; height: 86px; margin-left: auto; margin-right: auto;\">\n<tbody>\n<tr style=\"background-color: #a9a9a9;\">\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>KEY<\/strong><\/span><\/td>\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>VALUE<\/strong><\/span><\/td>\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>TIMEOUT<\/strong><\/span><\/td>\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>LIFETIME<\/strong><\/span><\/td>\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>TOUCH TIME<\/strong><\/span><\/td>\n<td style=\"border: 1px solid black;\" align=\"center\"><span style=\"color: #ffffff;\"><strong>CREATE TIME<\/strong><\/span><\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid black;\" align=\"center\">1<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">8.8.8.8:\/database\/lookup<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">indefinite<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">\u00a01<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830112<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830112<\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid black;\" align=\"center\">2<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">8.8.8.8:\/database\/lookup<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">indefinite<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">\u00a01<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830110<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830110<\/td>\n<\/tr>\n<tr>\n<td style=\"border: 1px solid black;\" align=\"center\">3<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">8.8.8.8:\/database\/lookup<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">indefinite<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">\u00a01<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830107<\/td>\n<td style=\"border: 1px solid black;\" align=\"center\">1223830107<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p>&nbsp;<\/p>\n<h2 class=\"h3\"><span class=\"ez-toc-section\" id=\"Example\"><\/span><strong>Example<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<p>Within our example we will rate-limit on a per IP, per URI basis.<\/p>\n<p>Below is the iRule:<\/p>\n<pre class=\"prettyprint\"># Function : RateLimit HTTP GET requests per IP, per URI\r\n# Created : 29\/10\/12\r\n\u00a0\r\nwhen RULE_INIT {\r\n\u00a0 \u00a0 set static::maxRate 3\r\n\u00a0 \u00a0 set static::windowSecs 1\u00a0\r\n}\r\n\u00a0\r\nwhen HTTP_REQUEST {\r\n\u00a0 \u00a0 if { ([HTTP::method] eq \"GET\") and ([class match [string tolower [HTTP::uri]] starts_with DATAGROUP-RATELIMIT-URI] ) } {\r\n\u00a0\r\n\u00a0 \u00a0 \u00a0 \u00a0 # whitelist\r\n\u00a0 \u00a0 \u00a0 \u00a0 if { [class match [IP::client_addr] equals DATAGROUP-RATELIMIT-WHITELIST] }{\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0return\r\n\u00a0 \u00a0 \u00a0 \u00a0 }\r\n\u00a0\r\n\u00a0 \u00a0 \u00a0 \u00a0 # set variables\r\n\u00a0 \u00a0 \u00a0 \u00a0 set limiter [string tolower [HTTP::uri]]\r\n\u00a0 \u00a0 \u00a0 \u00a0 set clientip_limitervar [IP::client_addr]:$limiter\r\n\u00a0 \u00a0 \u00a0 \u00a0 set get_count [table key -count -subtable $clientip_limitervar]\r\n\u00a0\r\n\u00a0 \u00a0 \u00a0 \u00a0 # main condition\r\n\u00a0 \u00a0 \u00a0 \u00a0 if { $get_count &lt; $static::maxRate } {\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 incr get_count 1\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0table set -subtable $clientip_limitervar $get_count $clientip_limitervar indefinite $static::windowSecs\r\n\u00a0 \u00a0 \u00a0 \u00a0 } else {\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 log local0. \"$clientip_limitervar has exceeded the number of requests allowed.\"\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 drop\r\n\u00a0 \u00a0 \u00a0 \u00a0 \u00a0 \u00a0 return\r\n\u00a0 \u00a0 \u00a0 \u00a0 }\r\n\u00a0 \u00a0 }\r\n}<\/pre>\n<h3><span class=\"ez-toc-section\" id=\"How_It_Works\"><\/span><strong>How It Works<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>The way in which this iRule works is by\u00a0creating a new table, named IP + URI and appending subsequent requests to the same table.<br \/>\nEach entry has a lifetime value and is removed once reached.<\/p>\n<p>Finally the table is then counted to ensure that the total amount of requests for a given IP and URI has not exceeded the configured threshold.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Datagroups\"><\/span><strong>Datagroups<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Within this iRule 2 datagroups are used.<\/p>\n<p><strong>DATAGROUP-RATELIMIT-WHITELIST<\/strong> &#8211; (Type:Address) &#8211; Contains addresses that are not to be rate-limited.<br \/>\n<strong>DATAGROUP-RATELIMIT-URI<\/strong> &#8211; (Type:String) &#8211; Contains URIs that are to be rate-limited. If all URIs should be rate-limited then just add an \/ to this datagroup.<\/p>\n<h3><span class=\"ez-toc-section\" id=\"Customization\"><\/span><strong>Customization<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h3>\n<p>In order to customize this iRule review the following 2 variables:<\/p>\n<pre class=\"prettyprint\">et limiter [string tolower [HTTP::uri]]\r\nset clientip_limitervar [IP::client_addr]:$limiter<\/pre>\n<h4><span class=\"ez-toc-section\" id=\"Ratelimit_using_different_Attributes\"><\/span><strong>Ratelimit using different Attributes<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>If you wanted to ratelimit on a per IP, per hostname basis then then the line would be:<\/p>\n<pre class=\"prettyprint\" style=\"width: 807.2166748046875px;\">set limiter [string tolower [HTTP::host]]<\/pre>\n<h4><span class=\"ez-toc-section\" id=\"Ratelimit_using_a_single_Attribute\"><\/span><strong>Ratelimit using a single Attribute<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>Likewise if you wanted to only rate-limit of a per IP basis then the &#8216;:$limiter&#8217; would be removed from the &#8216;$clientip_limitvar&#8217; variable.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Ratelimit_Connections\"><\/span><strong>Ratelimit Connections<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>If you want to rate limit traffic that is not HTTP based or the traffic is encrypted (SSL) then the following iRule can be used:<\/p>\n<pre># Function : RateLimit connections per IP\r\n# Created : 1\/11\/12\r\n \r\nwhen RULE_INIT {\r\n    set static::maxRate 3\r\n    set static::windowSecs 1 \r\n}\r\n \r\nwhen CLIENT_ACCEPTED {\r\n    if { [class match [IP::client_addr] equals DATAGROUP-RATELIMIT-WHITELIST] } {\r\n           return\r\n        } else {\r\n            \r\n        # set variables\r\n        set clientip [IP::client_addr]\r\n        set get_count [table key -count -subtable $clientip]\r\n\r\n        # main condition\r\n        if { $get_count &lt; $static::maxRate } {\r\n            incr get_count 1\r\n            table set -subtable $clientip $get_count $clientip indefinite $static::windowSecs\r\n        } else {\r\n            log local0. \"$clientip has exceeded the number of connections allowed.\"\r\n            drop\r\n            return\r\n        }\r\n    }\r\n}\r\n<\/pre>\n<h2 class=\"h3\"><span class=\"ez-toc-section\" id=\"Good_to_Know\"><\/span><strong>Good to Know<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h2>\n<h4><span class=\"ez-toc-section\" id=\"Memory\"><\/span><strong>Memory<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>It is worth nothing that the F5 places <span style=\"text-decoration: underline;\">NO<\/span> limits on the amount of memory that can be consumed when using the table command. Because of this it is recommended that once you have implemented this iRule that the memory of the device is monitored via the use of the command &#8220;show sys mem&#8221; within TMSH.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Bugs\"><\/span><strong>Bugs<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>There are a number of bugs that can cause excessive memory usage or TMM instability when using the table\/session command.<br \/>\nBelow are the main F5 bug IDs, <em>ref :\u00a0<a href=\"http:\/\/support.f5.com\/kb\/en-us\/solutions\/public\/13000\/600\/sol13670.html\">BIG-IP cumulative hotfix version 10.2.4<\/a><\/em><\/p>\n<p><strong>ID381096<\/strong> &#8211; Fixed a TMM connflow memory leak caused by iRule commands that temporarily suspend execution<br \/>\n<strong>ID363612<\/strong> &#8211; Memory utilization for TCL string cache has been optimized. Ref : sol13889<br \/>\n<strong>ID374923<\/strong> &#8211; Fixed a defect which could cause TMM to restart and leave a core when using the table command in an iRule on an SSL-enabled virtual server.<\/p>\n<p>All of the above are fixed within HF5. However it is recommended to upgrade to the latest hotfix, which at time of writing this is HF7.<\/p>\n<h4><span class=\"ez-toc-section\" id=\"Mirroring\"><\/span><strong>Mirroring<\/strong><span class=\"ez-toc-section-end\"><\/span><\/h4>\n<p>When session or tables are used within iRules Session DB mirroring is still performed, even if mirroring is not enabled on the virtual server.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule command &#8216;table&#8217; is used. The table command (as the name suggests) provides the ability to create, delete, and append tables, along with being able to define timeouts &#8230; <a title=\"F5 LTM &#8211; Rate-limiting via iRules\" class=\"read-more\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\" aria-label=\"Read more about F5 LTM &#8211; Rate-limiting via iRules\">Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[15],"tags":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v22.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>F5 LTM - Rate-limiting via iRules - Fir3net<\/title>\n<meta name=\"description\" content=\"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"F5 LTM - Rate-limiting via iRules - Fir3net\" \/>\n<meta property=\"og:description\" content=\"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\" \/>\n<meta property=\"og:site_name\" content=\"Fir3net\" \/>\n<meta property=\"article:published_time\" content=\"2012-11-03T00:00:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2021-08-01T04:18:37+00:00\" \/>\n<meta name=\"author\" content=\"Rick Donato\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Rick Donato\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"4 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#article\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\"},\"author\":{\"name\":\"Rick Donato\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\"},\"headline\":\"F5 LTM &#8211; Rate-limiting via iRules\",\"datePublished\":\"2012-11-03T00:00:00+00:00\",\"dateModified\":\"2021-08-01T04:18:37+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\"},\"wordCount\":633,\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"articleSection\":[\"F5 Loadbalancers\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\",\"url\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\",\"name\":\"F5 LTM - Rate-limiting via iRules - Fir3net\",\"isPartOf\":{\"@id\":\"https:\/\/www.fir3net.com\/#website\"},\"datePublished\":\"2012-11-03T00:00:00+00:00\",\"dateModified\":\"2021-08-01T04:18:37+00:00\",\"description\":\"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule\",\"breadcrumb\":{\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/www.fir3net.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Networking\",\"item\":\"https:\/\/www.fir3net.com\/networking\"},{\"@type\":\"ListItem\",\"position\":3,\"name\":\"Loadbalancers\",\"item\":\"https:\/\/www.fir3net.com\/networking\/loadbalancers\"},{\"@type\":\"ListItem\",\"position\":4,\"name\":\"F5 Loadbalancers\",\"item\":\"https:\/\/www.fir3net.com\/networking\/loadbalancers\/f5-big-ip\"},{\"@type\":\"ListItem\",\"position\":5,\"name\":\"F5 LTM &#8211; Rate-limiting via iRules\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/www.fir3net.com\/#website\",\"url\":\"https:\/\/www.fir3net.com\/\",\"name\":\"Fir3net\",\"description\":\"Keeping you in the know\",\"publisher\":{\"@id\":\"https:\/\/www.fir3net.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/www.fir3net.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/www.fir3net.com\/#organization\",\"name\":\"Fir3net\",\"url\":\"https:\/\/www.fir3net.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"contentUrl\":\"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png\",\"width\":390,\"height\":88,\"caption\":\"Fir3net\"},\"image\":{\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037\",\"name\":\"Rick Donato\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g\",\"caption\":\"Rick Donato\"},\"description\":\"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders.\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"F5 LTM - Rate-limiting via iRules - Fir3net","description":"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html","og_locale":"en_US","og_type":"article","og_title":"F5 LTM - Rate-limiting via iRules - Fir3net","og_description":"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule","og_url":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html","og_site_name":"Fir3net","article_published_time":"2012-11-03T00:00:00+00:00","article_modified_time":"2021-08-01T04:18:37+00:00","author":"Rick Donato","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Rick Donato","Est. reading time":"4 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#article","isPartOf":{"@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html"},"author":{"name":"Rick Donato","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037"},"headline":"F5 LTM &#8211; Rate-limiting via iRules","datePublished":"2012-11-03T00:00:00+00:00","dateModified":"2021-08-01T04:18:37+00:00","mainEntityOfPage":{"@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html"},"wordCount":633,"publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"articleSection":["F5 Loadbalancers"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html","url":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html","name":"F5 LTM - Rate-limiting via iRules - Fir3net","isPartOf":{"@id":"https:\/\/www.fir3net.com\/#website"},"datePublished":"2012-11-03T00:00:00+00:00","dateModified":"2021-08-01T04:18:37+00:00","description":"Within this article we look at how to rate-limit traffic via the use of an iRule. iRule The Table Command So that we can rate-limit traffic the iRule","breadcrumb":{"@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.fir3net.com\/Loadbalancers\/F5-BIG-IP\/f5-ltm-ratelimiting.html#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.fir3net.com\/"},{"@type":"ListItem","position":2,"name":"Networking","item":"https:\/\/www.fir3net.com\/networking"},{"@type":"ListItem","position":3,"name":"Loadbalancers","item":"https:\/\/www.fir3net.com\/networking\/loadbalancers"},{"@type":"ListItem","position":4,"name":"F5 Loadbalancers","item":"https:\/\/www.fir3net.com\/networking\/loadbalancers\/f5-big-ip"},{"@type":"ListItem","position":5,"name":"F5 LTM &#8211; Rate-limiting via iRules"}]},{"@type":"WebSite","@id":"https:\/\/www.fir3net.com\/#website","url":"https:\/\/www.fir3net.com\/","name":"Fir3net","description":"Keeping you in the know","publisher":{"@id":"https:\/\/www.fir3net.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.fir3net.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.fir3net.com\/#organization","name":"Fir3net","url":"https:\/\/www.fir3net.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","contentUrl":"https:\/\/www.fir3net.com\/wp-content\/uploads\/Fir3net-Background-Logo-compressed.png","width":390,"height":88,"caption":"Fir3net"},"image":{"@id":"https:\/\/www.fir3net.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/ab35009601b7687ee1c5310be6038037","name":"Rick Donato","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.fir3net.com\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/d75d69a54c0ca3b32c24c3a9703b623c?s=96&d=mm&r=g","caption":"Rick Donato"},"description":"Rick Donato is a Network Automation Architect\/Evangelist and the founder of Packet Coders."}]}},"_links":{"self":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/720"}],"collection":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/comments?post=720"}],"version-history":[{"count":0,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/posts\/720\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/media?parent=720"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/categories?post=720"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.fir3net.com\/wp-json\/wp\/v2\/tags?post=720"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}