Shaheryar
Aug 07, 2018Nimbostratus
iRule to pass original client IP in SSH proxy
We have planned to perform SSH load balancing on our F5 ADC. In our scenario it is mandatory for us to perform SNAT and hence original IP cannot be recorded on the servers. We need an iRule to forward original client IP to servers to manage accountability on them.
I went through this article: https://devcentral.f5.com/questions/how-to-pass-client-ip-onto-access-logs-for-tcp-port22-connections-56770
In the light of aforementioned link, which iRule can be used to inject original client IP to initial SSH version handshake.