CirrusHello All,
In order to reduce the amunt of public IPs assigned to our Web App, we decide to deploy multi apps in one VS, Im looking for a way to assign ASM policies to each web app according to the its Domain name,
Thanks in advance
MVPHello,
try LTM Policies, no need for iRules. As an example:
KR
Daniel
CirrusThank you
CirrusCan you please tell me why i cant log any of http request even if the logging profile is activated?
MVPShown where? I don't see a screenshot. This config works for me, nothing fancy...
CirrusI have applied the strategy to my vs, but I still can't access vs through the domain name.Why is this
CirrusI maybe looking at this a different way, but you should be able to load balance via Layer 7 and disabling and enabling the ASM within irules based on which select statement is triggered.
MVPYou are right, assigning ASM policies by matching certain "Conditions", like URI Path or Host Header, is possible either ways - by iRules or by LTM Policies. LTM Policies are just my preferred way.
Result is the same...
Cirruscould you plleade provide me an example of that irule ?
CirrusYes, for example you have a VIP that works off of HTTPS - Stream Enabled of course -
This would be the ASM Policy Applied on the VIP, as traffic passes you disable the policy to the specific Domain within the iRule.
when HTTP_REQUEST {
STREAM::disable
switch -glob [string tolower [HTTP::host]] {
"site1.com" {
pool /Common/Pool1Site1
}
"site2.com" {
pool /Common/Pool2Site2
ASM::disable
}
}
}