Forum Discussion
NimbostratusHow to host a new port on an existing service
We have a service hosted on ports 80 and 443. This service is hosted on 2 nodes, linked to two different pools each - primary and secondary. Virtual Server:443 does not have a default pool but an iRule. The iRule states to consider primary pool as 1st priority and move to secondary if the primary pool nodes are down. Virtual Server:80 has the same iRule along with https redirect iRule.
We want to host this service on port 9002. What would be the best way to go about this?
3 Replies
- Kevin_Stewart
Employee
Can you elaborate? Do you want the service to listen on port 9002, or the virtual server?
asarkar_135798The service to listen on 9002
- Kevin_Stewart
Okay, if I understand you correctly, you want the service to listen on port 9002 (instead of ports 80 and 443). That essentially involves the following configuration:
- Create a single pool of servers listening on port 9002
- Create a standard port 80 virtual server and attach this pool
- Create a standard port 443 virtual server and attach a client SSL profile and this pool
That's basically it. The address and port translation options in the standard virtual server config do the rest. I'm not exactly sure how you have your existing port 80 and 443 VIPs (and iRules) configured, so please allow me to explore some options.
-
Typically, if you want clients to only access the VIP via port 443 HTTPS, you might also have a port 80 VIP that simply redirects all traffic to the HTTPS VIP. In that case you wouldn't apply anything to that port 80 VIP other than an HTTP profile and the built-in "_sys_https_redirect" iRule. No pool.
-
You may not actually need an iRule to manage the priority of pool members, as that too is handled in the GUI via the priority group activation setting in the pool config. The higher the number assigned to a member, the higher its priority. Also make sure you apply a good monitor, or priority group won't work.
