Re-routing with SSL problem

Question

Hi there&nbsp;
I'm a newbie with LTM and have been struggling with following some time now, with no success... &nbsp;
I have two servers in a pool with load balancing and SSL decryption at LTM. Everything is working just fine but what I would like to do is the following...&nbsp;
I'd like to add another node(s) to where I'd like the end users to be rerouted by link on a main site (or string returning to their browser). I have a VIP and virtual server that decrypts SSL and forwards it to actual application servers. I have managed to get re-route work with just HTTP but I'd like to re-route traffic encrypted from browser to LTM. &nbsp;
Please advice&nbsp;

boneyard · Answer

perhaps i don't understand your question fully. but this sounds like a simple second pool to which traffic is send when the client goes to a specific URI.&nbsp;
so for example&nbsp;
https://domain.com/ --&gt; pool1
https://domain.com/special --&gt; pool2&nbsp;
for that you can use iRule or local traffic policy.&nbsp;
is that what you want?&nbsp;

esa_h_192976 · Answer

Hi and thanks for the help... Indeed, that is what I really would like to have, but somehow I just can't get it to work.
the example: 
Pool 1 contains server1, Pool 2 contains server 2... 
https://domain.com --&gt; should go to pool 1. if a link on server 1 contains "Tequila" (https://domain.com/tequila) ---&gt; should go to pool2if a link on server 1 contains "Whiskey" (https://domain.com/whiskey) ---&gt; should go to pool3 ... an so on
and...
if a reply from server contains e.g. username "Homer" ---&gt; should go to pool4
I have this kind of an iRule... (copied from Devcentral)
    when HTTP_REQUEST { 
    log local0. "request received" 
       if { [string tolower [HTTP::uri]] starts_with "Tequila" } { 
       log local0. "request for service received. Selecting end server" 
          pool Pool2     }
     elseif  { [string tolower [HTTP::uri]] starts_with "Whiskey" } { 
       log local0. "request for service received. Selecting end server" 
        pool Pool3

}
 else { pool Pool1
         log local0. "Condition not matched. to Pool 1..."
 } 
} 
when SERVER_CONNECTED { 
log local0. "Connection from [IP::client_addr]:[TCP::client_port] to 2. server: [IP::server_addr]:[TCP::server_port] established."
}

Somehow it just not work properly the connection is taken to wrong server of not at all
Esa

boneyard · Answer

well the combination string to lower with a comparison that contains a Uppercase letter wont work of course.

start with changing that, i.e. : if { [string tolower [HTTP::uri]] starts_with "tequila" } {

esa_h_192976 · Answer

Hi again... thanks... I got a little futher with an issue. I will return with some new issues later.&nbsp;

Forum Discussion

Re-routing with SSL problem

4 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

Re: F5 Distributed Cloud - Customer Edge Site - Deployment & Routing Options

Source_Addr Persistence Problems

Problem about Export imformation to Excel

C3D first request problem

Troubleshooting TLS Problems With ssldump