Forum Discussion
Brad_Parker_139
Nacreous
Rather than an additional route domain you should consider using the
nexthop
command in your iRule to direct traffic out the interface you want.
Brad_Parker_139
Nov 17, 2015Nacreous
You could try setting a variable and use that to set the nexthop in SERVER_CONNECTED.
when SOCKS_REQUEST {
if { [class match [SOCKS::destination] ends_with SOCKS_whitelist] } {
log -noname local6.notice "[virtual name]: SOCKS request from client at [IP::remote_addr] for host [SOCKS::destination] allowed"
set socksAllowed 1
SOCKS::allowed 1
} else {
log -noname local6.warning "[virtual name]: SOCKS request from client at [IP::remote_addr] for host [SOCKS::destination] blocked"
set socksAllowed 1
SOCKS::allowed 0
}
}
when SERVER_CONNECTED {
if { $socksAllowed }{
nexthop destination
}
}