Forum Discussion
Brian_Van_Stone
Apr 27, 2012Nimbostratus
When we are doing site maintenance at my company we actually have secondary VIPs for those performing the maintenance/testing. The new VIPs listen on the same IP but on a non-standard port (4011-4014 for http to legs 1 through 4 and 5011-5014 for https to legs 1 through 4). These new VIPs point to pools which still send traffic over 80/443 so everything works the same in the back end. This also enables us to circumvent the load balancing and test one leg at a time.
Then, when you want to enter maintenance mode, rather than enabling an iRule which would perform a redirect, make the typical VIP point to a maintenance pool which always performs the redirect you desire via an iRule.
when HTTP_REQUEST {
HTTP::redirect "http://www.***.com/Maint_Pages/Maintenance.html"
}
When maintenance is complete, make the VIP again point to the "online" pool.
At that point it is up to you whether or not you want to attempt to restrict access to the VIPs listening on the maintenance ports but the iRule you currently have would likely serve the purpose of doing so since Akamai should never be initiating connections to those VIPs.
Hope this helps,
Brian