Forum Discussion
Comex_17260
Nimbostratus
Nimbostratushow to clone/mirror traffic of a "member"
Hello folks,
I searched "clone" word to see if related subject is covered but the search functionality of the forum does not seem to be working at all.
Right, here is my problem.
...
hoolio
Cirrostratus
CirrostratusThe clone server would need to accept packets destined for its MAC address with a destination IP of the virtual server or the production pool member for the clone pool to work.
If the clone server will only answer for its own IP address and you can use source address translation for the clone server traffic, you could use High Speed Logging to do this. Colin wrote up a tech tip for an iRule which does this for HTTP requests. You could modify that for your UDP use case.
http://devcentral.f5.com/Tutorials/TechTips/tabid/63/articleType/ArticleView/articleId/1088513/HTTP-Request-Cloning-via-iRules-Part-1.aspx
If you can't use source address translation on the cloned traffic you could try using sideband connections in v11. Using the sideband connect -myaddr command option, you can set the source IP address that TMM uses for the sideband connection. For TCP traffic the clone server would need to have its default gateway set to the LTM self IP. For UDP, the responses and therefore the clone server gateway shouldn't matter.
http://devcentral.f5.com/wiki/iRules.sideband.ashx
http://devcentral.f5.com/wiki/iRules.connect.ashx
If you try either option and get something working, it would make a great codeshare example. Or if you try something and get stuck, post the iRule you're testing and any debug logging output you add to the iRule.
Aaron
