Forum Discussion
jrok_47156
Nimbostratus
NimbostratusClone, what does it do technically in an iRule?
ok, maybe my previous post from a few days ago was too confusing, sorry about that.
"Clone single http request" https://devcentral.f5.com/community...542/asg/50
Let's see if I can simplify ...
What_Lies_Bene1
Cirrostratus
CirrostratusOK, understood. I'm a network guy who knows a bit about programming, you're a programmer who knows a bit about networks! =]
So, the Clone Pool feature won't work here. When the traffic is cloned the original destination IP address of the Virtual Server the client connected to is unchanged, it's not automatically translated (as it would be when sent to a real server in the 'normal' Pool). Presumably a TCP three way handshake also doesn't occur. This is why this feature will generally only work with IDS/IPS security devices that inspect traffic below the TCP/IP layer.
Whilst I appreciate your approach, personally I'd prefer to do this via email, logging or SNMP. Do you have any options around these?
If not we'll probably need to look at using a Sideband connection but I won't explore that unless we have to.
