Forum Discussion

Dave_Wiley's avatar
Dave_Wiley
Icon for Nimbostratus rankNimbostratus
Feb 01, 2007

Using an iRule to extract Client Data w/ SSL Decryption

Howdy!

I need to have an iRule search for some data from the client in a non-HTTP packet with SSL offload. The rule works perfectly when I'm not using SSL Offload, but I'm using the data for my persistence table and need to be able to see it before selecting a pool member.

My iRule is:


when SERVER_CONNECTED {
    TCP::collect 128
}
when SERVER_DATA {
    set serverdata [TCP::payload]
    set server_cookie [findstr $serverdata "CID=" 4 " "]
    set server_cookie2 [substr $server_cookie 0 36]
    if { $server_cookie2 != ""} {
        persist add uie $server_cookie2 300
    }
}
when CLIENT_ACCEPTED {
    TCP::collect 128
}
when CLIENT_DATA {
    set clientdata [TCP::payload]
    set client_cookie [findstr $clientdata "CID=" 4 " "]
    set client_cookie2 [substr $client_cookie 0 36]
    if { $client_cookie != ""} {
        persist uie $client_cookie2     
    }
}

Any ideas?

Dave
application delivery
dev
devops
iRules
No RepliesBe the first to reply