For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

John_Klemm_4418's avatar
John_Klemm_4418
Icon for Nimbostratus rankNimbostratus
Oct 30, 2006

Irule won't accept

01070585:3: Virtual server (XXX_REPEATERS_HTTP) cannot reference rule (_sys_auth_ssl_ocsp) more than once (check persistence, auth and rules).       Has anyone gotten this before?
application delivery
dev
devops
iRules
John_Klemm_4418's avatar
John_Klemm_4418
Icon for Nimbostratus rankNimbostratus
Oct 30, 2006
here is the rest of the conig. The repeaters pool is the one in reference to the IRULE

 

 

 

route default inet {

 

gateway xxx.xxx.145.1

 

}

 

node * monitor icmp

 

ocsp responder my_ocsp_responders_ {

 

url "ocsp.my.mil"

 

}

 

auth ssl ocsp ocsp_responders {

 

responder my_ocsp_responders_

 

}

 

profile auth ssl_ocsp {

 

config ocsp_responders

 

type ssl ocsp

 

mode enable

 

credential source http basic auth

 

rule _sys_auth_ssl_ocsp

 

idle timeout 300

 

}

 

pool my_REPEATERS_POOL {

 

monitor all http

 

member xxx.xxx.145.246:http

 

member xxx.xxx.145.247:http

 

member xxx.xxx.145.248:http

 

member xxx.xxx.145.249:http

 

}

 

 

 

pool my.mil_pool {

 

monitor all min 1 of http gateway_icmp

 

member xxx.xxx.145.30:http

 

member xxx.xxx.145.31:http

 

}

 

rule redirect_rule {

 

when HTTP_REQUEST {

 

HTTP::redirect https://[getfield [HTTP::host] ":" 1][HTTP::uri]

 

}

 

}

 

virtual address xxx.xxx.145.246 {

 

}

 

virtual my_REPEATERS_HTTP {

 

destination xxx.xxx.145.240:http

 

ip protocol tcp

 

profile clientssl http tcp

 

auth ssl_ocsp

 

pool my_REPEATERS_POOL

 

}

 

virtual vs_my.mil {

 

destination xxx.xxx.145.29:http

 

ip protocol tcp

 

pool my.mil_pool

 

}