iRule not executing on HTTP requests from internal network

Question

Hi,I have a BIG-IP VE machine running as an AWS EC2 instance, and I have encountered some behavior I can't understand.I have a virtual server with an HTTP profile, with an iRule applied to it.When I send HTTP requests to this virtual server, the iRule runs as expected. However when I send requests from other EC2 VMs in the same AWS VPC, I do get the expected HTTP response as the client, but the iRule does not run (I added logs to the iRule to make sure of this). Both the BIG-IP instance and the VM I'm sending the requests from are also sitting in a single subnet, with private IPs in the 172.31.x.x range.&nbsp;What is causing this and how can I make the iRule always run?

injeyan_kostas · Answer

Do you have other VS on the same BIG IP?Might be requests from EC2 match another VS?Have you done a tcpdump to ensure you are matching the expected VS?

iruleyourulewerule · Answer

I have only 1 VS so it's definitely the right one matching.

However... I investigated further and realized the iRule is executing, but the "after" command is not working in these instances. I have an "after 100 <script>" line which executes on requests from my local computer (and a colleague's computer on a different network), but it doesn't execute when I send requests from some cloud VMs I tested, both on AWS and in Azure. So it's still a mystery to me..

injeyan_kostas · Answer

Sounds weird indeed.Could you share irule, VS config and any logs you have?

Forum Discussion

iRule not executing on HTTP requests from internal network

3 Replies

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Rewrite content in XML schema file.

DNS Request to VS?

Guide for exam 402 F5 Certified Solution Expert

HA pair when both Tenants reside on the same Velos chassis

SMTP SNAT vs iRule header

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS