ltm rule command drop

iRule(1)		      BIG-IP TMSH Manual		      iRule(1)



drop
       Causes the current packet or connection to be dropped/discarded.

SYNOPSIS
       drop

DESCRIPTION
       Causes the current packet or connection (depending on the context of
       the event) to be dropped/discarded and the rule continues (no implied
       return). This command is identical to discard.

       Syntax

       drop

	    * Causes the current packet or connection (depending on the context
	      of the event) to be discarded. Nothing is sent to the client.
	    * Removes the corresponding entry from the system connection table.
	      Note that, in the case of TCP, if subsequent segments arrive
	      without SYN bit set (and ACK bit unset), a RST will be sent as a
	      result. This is the standard behavior when segments of that type
	      arrive when there is no system connection entry.

RETURN VALUE
VALID DURING
       ANY_EVENT

EXAMPLES
	when SERVER_CONNECTED {
	  if { [IP::addr [IP::client_addr] equals 10.1.1.80] } {
	     drop
	     log local0. "connection dropped from [IP::client_addr]"
	  }
	}

	After "drop" is executed, the rule will continue until the end of the
	current event so "connection dropped ..." will be logged.

HINTS
SEE ALSO
CHANGE LOG
       @BIGIP-9.0.0 --First introduced the command.



BIG-IP				  2017-01-31			      iRule(1)