For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

MeAndMyBIGIP_60's avatar
MeAndMyBIGIP_60
Icon for Nimbostratus rankNimbostratus
Jun 21, 2010

HTTP::URI redirect to another Pool

Trying to use the sample code here (http://devcentral.f5.com/wiki/default.aspx/iRules/HTTP__uri.html) to do something that should be very simple:     when HTTP_REQUEST { if { [HTTP::uri] ends...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jun 22, 2010
If the pool members have a route back to the client through LTM, you can avoid using SNAT and LTM won't translate the source IP to its own address on serverside connections. If the pool members don't have LTM as their default gateway or the clients are on the same subnet as the pool members, you'll need to use SNAT. The simplest way to enable SNAT is to set SNAT to automap on the virtual server.

 

 

For HTTP or LTM decrypted HTTPS, you can insert a custom X-Forwarded-For header which the web application can read. SeeSOL4816 for details on this:

 

 

SOL4816: Using the X-Forwarded-For HTTP header to preserve the original client IP address for traffic translated by a SNAT

 

https://support.f5.com/kb/en-us/solutions/public/4000/800/sol4816.html

 

 

Aaron