F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Stef_85923's avatar
Stef_85923
Icon for Nimbostratus rankNimbostratus
Jul 28, 2011

HSS header modification

I am trying to create an iRule wihci will affect the HSS header, the source IP will be be inserted in the new customer header (x-hss-auth) with a new on net/offnet flag. The iRule logic is the follw...
application delivery
dev
devops
iRules
Kevin_Davies_40's avatar
Kevin_Davies_40
Icon for Nacreous rankNacreous
Aug 02, 2011
 This code injects the X-HSS-Auth header to reflect the source of the traffic
 The header x-wsbsourceip should exist in the incoming request when coming from WAP networks
 X-HSS-Auth is x.x.x.x,0.0.0.y where x is the source address, y is 0 for internet or 1 for On-Net/WAP traffic

when HTTP_REQUEST { 
    remove headers we dont want 
   HTTP::header remove {X-Net-Info} {X-Forwarded-For} 
    inject header to show where we came from. 
   if { [class match [IP::client_addr] equals WAP] } { 
    set header "[HTTP:header {x-wsbsourceip}],0.0.0.1" 
   } elseif { [class match [IP::client_addr] equals On-Net] } { 
     set header "[IP::client_addr],0.0.0.1" 
   } else { 
     set header "[IP::client_addr],0.0.0.0" 
   } 
   HTTP::header insert {X-HSS-Auth} $header 
   log "My IP address is [IP::client_addr]. My new header X-HSS-Auth: $header"  
}

 

Hope that helps.