Forum Discussion

mika's avatar
mika
Icon for Cirrus rankCirrus
Aug 17, 2020

Cookie

 

Hello,

There are cokies to know which backend server we are on with big ip v 14 ?

Best regards,

 

  • Hello Mika.

    You can use an iRule to inject a HTTP header with this info.

    when SERVER_CONNECTED {
        set node [IP::remote_addr]
    }
     
    when HTTP_RESPONSE {
        HTTP::header insert {LB-SERVER} $node
    }
    # curl -v http://10.130.4.50 -o /dev/null
    ...[Omitted]
    HTTP/1.1 200 OK
    < Date: Tue, 18 Aug 2020 08:18:42 GMT
    < Server: Apache/2.2.15 (CentOS)
    < X-Powered-By: PHP/5.3.3
    < Content-Length: 7677
    < Connection: close
    < Content-Type: text/html; charset=UTF-8
    < LB-SERVER: 172.16.1.2

    Regards,

    Dario.

    • mika's avatar
      mika
      Icon for Cirrus rankCirrus

      Thanq u for your anser :) but me i want return the ip of node not encrypt, this just for same ip for the devlopper and the project manager for theirs tests the load balancing.

       

      This fonctionnality of the cookie persistence it's the vulnérabily for systeme big ip https://www.nooby.fr/hacking-f5-persistence-cookie/.

       

      Regards,

      • Hello Mika.

        You can use an iRule to inject a HTTP header with this info.

        when SERVER_CONNECTED {
            set node [IP::remote_addr]
        }
         
        when HTTP_RESPONSE {
            HTTP::header insert {LB-SERVER} $node
        }
        # curl -v http://10.130.4.50 -o /dev/null
        ...[Omitted]
        HTTP/1.1 200 OK
        < Date: Tue, 18 Aug 2020 08:18:42 GMT
        < Server: Apache/2.2.15 (CentOS)
        < X-Powered-By: PHP/5.3.3
        < Content-Length: 7677
        < Connection: close
        < Content-Type: text/html; charset=UTF-8
        < LB-SERVER: 172.16.1.2

        Regards,

        Dario.