For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Blueluke_85810's avatar
Blueluke_85810
Icon for Nimbostratus rankNimbostratus
Oct 29, 2012

Cannot capture the source port coming back from node.

I am trying to capture the source port coming back from the node but I only get the pool member port. Any idea how I can capture this so I can snat my traffic?  
application delivery
dev
devops
iRules
Blueluke_85810's avatar
Blueluke_85810
Icon for Nimbostratus rankNimbostratus
Oct 30, 2012

This is the irule being applied at the any vip.

 

 

when CLIENT_ACCEPTED {

 

log local0.debug "Client_accepted triggered"

 

log local0.debug "remote addy is [IP::remote_addr] remote port is [TCP::remote_port] local addy is [IP::local_addr] port is [TCP::local_port]"

 

if { [TCP::remote_port] >= 6500 and [TCP::remote_port] <= 6549} {

 

log local0.emerg "Matched port range - Remote port was: [TCP::remote_port] "

 

snat 10.118.48.100 989

 

}

 

}

 

 

This never seems to fire as far as I can see. If I use something like SERVER_CONNECTED I do see the event firing but it only returns the port of the pool member and not the actual node port. You can see our problem.