Forum Discussion
NimbostratusElection hash with https
Hi i am trying persist to bluecoat using election hash algorith, it works fine for http, but when i tried same for https its not working . below is my code for http . Please help , thanks in advance.
when HTTP_REQUEST { set High_Score -9999999999 set Node_Picked ""
foreach Cur_Node [active_members -list Ironport_pool] { if { [crc32 $Cur_Node[HTTP::uri]] > $High_Score } { set High_Score [crc32 $Cur_Node[HTTP::uri]] set Node_Picked $Cur_Node } } pool Ironport_pool member [lindex $Node_Picked 0] [lindex $Node_Picked 1] }
7 Replies
Mir_62083when HTTP_REQUEST { set High_Score -9999999999 set Node_Picked ""
foreach Cur_Node [active_members -list Ironport_pool] { if { [crc32 $Cur_Node[HTTP::uri]] > $High_Score } { set High_Score [crc32 $Cur_Node[HTTP::uri]] set Node_Picked $Cur_Node } } pool Ironport_pool member [lindex $Node_Picked 0] [lindex $Node_Picked 1] }
pool Ironport_pool member [lindex $Node_Picked 0] [lindex $Node_Picked 1] }
a_pavlov_114144Cirrus
Do you have SSL Profiles assigned to your virtual servers?
- Mir_62083
No I have no ssl profile assigned to VS,is it not possible without it.
Henrik_GyllkranNot in this case, since you're using HTTP_REQUEST and [HTTP::uri], these things are not applicable if the BIG-IP can't decrypt the traffic.
- a_pavlov_114144
In this case BIGIP cannot see HTTPS traffic because it's encrypted. You should assign client and server ssl profiles to your virtual server and everything should work fine.
- Mir_62083
So it means basically i need to apply client server ssl encryption decrytion profile and keep the same irule and it should work fine.
- Yes, there's a couple of additional requirements though. Since you didn't have SSL profiles previously I'm assuming that the servers are responding on SSL as well, so you will need a server SSL profile also. Furthermore, that iRule will require a http profile. So with all that the iRule should work like a charm.
