NimbostratusF5 Healthcheck
Hi gurus
I am new to F5 and wanted to ask a few questions about the following scenario that I have:
I need an application sitting in the corporate network to access a service on port 443 out in the internet. The users are in the user zone and to go out to the internet they need to go through the DMZ. However there is no direct path between where the users are and the DMZ. So the users need to hop on to a jump box to go to the server in the DMZ and then out to the internet. The jumpbox and the server has been configured to run a proxy listening on a particular port. The user to the first jumpbox is going through a F5. It will be ideal if I can do an end to end healthcheck for the entirety of the path. My questions are:
- Can I do a healthcheck on port 443 for the end to end path, i.e the first jumpbox and the server in DMZ and the service out in the internet? I believe it requires a complex iRule. Is that true?
- Can I do a TCP Half open check from the F5 all the way down the chain?
- If I do a port 80 healthcheck and the service on the internet is listening on port 80, i.e I am just doing a check on the availability of the path and not on the service, shall we need complicated send and receive strings, or is it standard out of the box config?
- Any other suggestions as to how this can be done?
As I said, I am new to F5 and any help will be greatly appreciated.
Regards, Dips
