I-rule not working

Question

Hi Guys i have a irule but I'm not sure if it is work it's to send three URL to three different pools. I'm not getting errors on the i-rule but I'm not getting out to the pool members when connect. this is what i have...

&nbsp;

when HTTP_REQUEST { &nbsp;
   switch -glob [string tolower [HTTP::uri]] { &nbsp;

"URI 1" {&nbsp;
pool pool1&nbsp;
}&nbsp;

"URI 2" {&nbsp;
pool pool2 &nbsp;
}&nbsp;

"URI 3" {&nbsp;
pool pool3 &nbsp;
}&nbsp;

&nbsp;
&nbsp;

&nbsp;

nitass · Answer

can you put some logging? 
  
 e.g. 
  
 [root@ve10:Active] config  b rule myrule list
rule myrule {
   when HTTP_REQUEST {
   switch -glob [string tolower [HTTP::uri]] {
      "URI 1" { pool pool1 }
      "URI 2" { pool pool2 }
      "URI 3" { pool pool3 }
        }
}
when HTTP_RESPONSE {
   log local0. "[IP::client_addr]:[TCP::client_port] -&gt; [clientside {IP::local_addr}]:[clientside {TCP::local_port}] -&gt; [IP::remote_addr]:[TCP::remote_port]"
}
}

angelo · Answer

@nitass  
&nbsp;  
&nbsp; Thanks for the reply  
&nbsp;  
&nbsp; when trying to add i get a error 
&nbsp; line 6: [command is not valid in the current scope] [when HTTP_RESPONSE  
&nbsp;  
&nbsp; but another thing even the vendor irules that they installed doesn't seem to work. i can see on the F5 web-front that rules are executed without a error but it's just not working...

nathe · Answer

Angelo 
&nbsp;  
&nbsp; Think there's a rogue } at the end. Try this: 
&nbsp;  
&nbsp; when HTTP_REQUEST { 
&nbsp;    switch -glob [string tolower [HTTP::uri]] { 
&nbsp;       "URI 1" { pool pool1 } 
&nbsp;       "URI 2" { pool pool2 } 
&nbsp;       "URI 3" { pool pool3 } 
&nbsp;         } 
&nbsp; } 
&nbsp; when HTTP_RESPONSE { 
&nbsp;    log local0. "[IP::client_addr]:[TCP::client_port] -&gt; [clientside {IP::local_addr}]:[clientside {TCP::local_port}] -&gt; [IP::remote_addr]:[TCP::remote_port]" 
&nbsp; } 
&nbsp;  
&nbsp; As for the second part, as Nitass said, logging is a good starting point. 
&nbsp;  
&nbsp; Hope this helps, 
&nbsp; N

nitass · Answer

thanks nathan. 🙂 
  
 Angelo, 
  
 you may add more information in log. 
  
 e.g. 
  
 [root@ve10:Active] config  b virtual bar list
virtual bar {
   snat automap
   pool foo
   destination 172.28.19.79:80
   ip protocol 6
   rules myrule
   profiles {
      http {}
      tcp {}
   }
}
[root@ve10:Active] config  b rule myrule list
rule myrule {
   when HTTP_REQUEST {
   set uri [HTTP::uri]
   switch -glob [string tolower $uri] {
      "/uri1*" { pool pool1 }
      "/uri2*" { pool pool2 }
      "/uri3*" { pool pool3 }
   }
}
when HTTP_RESPONSE {
   log local0. "[IP::client_addr]:[TCP::client_port] -&gt; [clientside {IP::local_addr}]:[clientside {TCP::local_port}] -&gt; [IP::remote_addr]:[TCP::remote_port] | uri: $uri | pool: [LB::server pool]"
}
}

[root@ve10:Active] config  tail -f /var/log/ltm
Jul 14 03:07:31 local/tmm info tmm[5111]: Rule myrule : 172.28.19.251:37297 -&gt; 172.28.19.79:80 -&gt; 200.200.200.101:80 | uri: /uri1 | pool: pool1
Jul 14 03:07:34 local/tmm info tmm[5111]: Rule myrule : 172.28.19.251:37298 -&gt; 172.28.19.79:80 -&gt; 200.200.200.101:80 | uri: /uri2 | pool: pool2
Jul 14 03:07:35 local/tmm info tmm[5111]: Rule myrule : 172.28.19.251:37299 -&gt; 172.28.19.79:80 -&gt; 200.200.200.101:80 | uri: /uri3 | pool: pool3

angelo · Answer

guys i got the rule woking the problem is now that all the traffic is only going to the first pool

Forum Discussion

I-rule not working

Recent Discussions

ip x-forwarding

F5 ASM API-Protection Policy

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Related Content

i-rule header insert - APM

I-rule for adapt request "response page"

F5 iRUule not working

BIG-IP connection mirroring in public cloud doesn't work, but why?

i rule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS