As Kevin first suggested, Local traffic policies allow to replace most of irules. there is a bug in the 11.4 version, but is corrected in 11.5.
You can start with the following workaround allowing to use Policies with a small irule doing which is impossible in policy. (iRule HTTP_REQUEST event occurs after Policy Request event)
There is a workaround allowing to use Local traffic policies to disable SSL server side: create the rule action
tcl variable
named ssldisable with value 1
add the following irule and assign it to the VS:
when HTTP_REQUEST {
if {([info exists "ssldisable"]) && $ssldisable } {
SSL::disable serverside
}
}
When you will upgrade to 11.5, you only have to replace the
set variable
action by
server-ssl disable