For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Wes_98712's avatar
Wes_98712
Icon for Nimbostratus rankNimbostratus
Mar 17, 2006

images irule

I have a strange problem, one that I can't seem to figure out, probably because I'm not thinking it through. I have the following rule:     else if (http_uri ends_with one of images) { use ...
application delivery
dev
devops
iRules
v4
Deb_Allen_18's avatar
Deb_Allen_18
Historic F5 Account
Mar 18, 2006
Each HTTP object, even images referenced within an HTML page, is a separate request, and each request can be sent to a different pool using logic similar to yours. It sounds like you need to be able to tell when an image is called by /branch.html. You can tell what page called the images by examining the "Referrer" header -- something to consider in building your conditions.

 

 

Adding log statements such as "condtion X seen, using pool Y" can help reveal where your rule logic is broken, if that is indeed the case.

 

 

But I could see how sending request to 2 different servers could interfere with jsessionid assignment such that one server's sessionID would overwrite the other's.

 

 

Can you make the image servers stop generating a 2nd jsessionid? If it's just serving images, I would think the server doesn't need to create stateful sessions.

 

 

If you can't prevent the 2nd sessionID from being set, in v9 you could intercept the 2nd jsessionid from the image server if the request came from that Referrer, and delete that cookie.

 

 

HTH

 

/d