Irule for TCP DATA verification

Question

Hi Experts,
I have created the below iRule, Kindly can you please suggest to tune it.
I am looking for three conditions to match in a connection to allow the user.
For Eg: The Client ID (TID) should be Equal to Serial Number (TSN) and its MAC (MAC)
when CLIENT_ACCEPTED {    
    TCP::collect 
}

when CLIENT_DATA {          
set payload [TCP::payload] 
regexp {} payload TID
regexp {} payload TSN
set TSN "$TSN,"
set MAC LINK::lasthop
concatenate the two variables
set total "$TSN$MAC" 
set value [class match -name $TID equals string_Data_group ]

if {$value ne $total}{
    reject
    }

}

Thanks,
Ibrahim

stanislas_piro2 · Answer

Hi,&nbsp;
The main problem in your irule is the regexp command twice of all payload data for any TCP .&nbsp;
What is the regexp pattern? this seems empty. can you search pattern without regex (string with fixed length, encoded string length in headers, ...)?&nbsp;

Forum Discussion

Irule for TCP DATA verification

Recent Discussions

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

How to Renew F5 Device Certificate

F5 ASM CEF Sending Logs in Specific TimeZone

Inquiry About the "ast-api-discovery" Repository

Related Content

Google Authenticator Token Verification iRule For APM

SSL Bridging verification

Google Authenticator Verification iRule (TMOS v11.1+ optimized)

v11: iRules Data Group Updates

Copilot’s Weakness, DeepSeek Data exposed, Backdoor in Contec CMS8000 & Apple's Zero-Day

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS