iRule with Performance (layer 4) and protocols set to "all"

Question

So I have an LDAP VIP set as Performance (layer 4) and protocols set to "all" listening on all ports.&nbsp;
I've been asked for stats on client IP addresses.  I've done request logging in iRules before, but I'm not sure what's available if "all" protocols is set.  After doing a quick trace, I do see at least 1 client hitting the Kerberos port on UDP.  :(&nbsp;
Is Client_connected available?  If so, how about LB_Selected?&nbsp;
I really only need the client IP, and what port/proto they are hitting so I should be able to use client_connected, but as long as I'm going down this road, I may as well get my learn-on...&nbsp;
Thanks,
Bill&nbsp;

bwolmarans_1284 · Answer

yes, I think so.
irule:
when CLIENT_ACCEPTED {
 log [IP::client_addr]
}

config:
ltm virtual /Common/l4_devcentral_test {
    destination /Common/10.10.20.174:0
    mask 255.255.255.255
    pool /Common/http_pool
    profiles {
        /Common/fastL4 { }
    }
    rules {
        /Common/l4_devcentral_test
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    translate-address enabled
    translate-port disabled
}

bill_baker · Answer

Thanks.  I'm actually looking for server side data as well.  Which port is the client hitting as well.  That's the part I'm not so sure about.  If I'm looking for a port, I'm pretty sure I have to either look for TCP::local_port, or UDP::local_port.

Forum Discussion

iRule with Performance (layer 4) and protocols set to "all"

2 Replies

Recent Discussions

google autenticator broken barcode

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Related Content

SSL Profiles Part 10: All The "Little" Options

SSL protocol mismatch

BIG-IP BGP Routing Protocol Configuration And Use Cases

Proxy Protocol Initiator

Proxy Protocol Receiver