Pool redirect based on source IP and port

Question

We have an application that listens on port 80, 443, and 808. We use http monitors which means instead of having a single 0 service pool each VIP has its own pool for the associated ports. We have a need to redirect requests from specific IPs to a isolated pool. But because there are three pools I have three irules and Im wondering how I can consolidate that to one that looks at source port and uses that to populate part of the pool name.
Here is what I have. Change the pool name for ports 443 and 808. Can I change to be something like pool -* and populate the * with the port the request came in on so I can have a single iRule?
when CLIENT_ACCEPTED {
switch [IP::addr [IP::client_addr] mask 255.255.255.0] {
    "1.1.1.0" -
    "2.2.2.0" {
        pool www.site.com-80
    }
  }
}

charlescs · Answer

Try using the TCP::local_port data item, whose value should be either 80, 443, or 808 depending on which virtual server is being accessed.
when CLIENT_ACCEPTED {
switch [IP::addr [IP::client_addr] mask 255.255.255.0] {
    "1.1.1.0" -
    "2.2.2.0" {
        pool www.site.com-[TCP::local_port]
    }
  }
}

Forum Discussion

Pool redirect based on source IP and port

1 Reply

Recent Discussions

BIG-IP DNS: Check Status Of Multiple Monitors Against Pool Member

Open Redirection Mitigation

F5Access | MacOS Sonoma

enable tls1.2 on management interface on F5 ltm running version 10.x

[ASM] - what is "Browser Challenge file" ?

Related Content

URL based redirection

Anchor Link Redirect

F5 & Cisco ACI Essentials - Take advantage of Policy Based Redirect

Cookie-based DDoS protection

iRule based RADIUS Client Stack