For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

meena_60183's avatar
meena_60183
Icon for Nimbostratus rankNimbostratus
Jun 28, 2010

Is this correct?

I am trying to write an irule where I perform snat based on the LB_SELECTED server address and this is what I have     when LB_SELECTED {   Check the CAS server and do SNAT   log...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jun 28, 2010
Hi Meena,

You can use the IP::addr command to compare a single IP or network to another IP or network. Also, you should use local variables instead of global ones for this as they'll change with each connection. 


when LB_SELECTED {
    Check the CAS server and do SNAT
   log local0. "LB server addr is [LB::server addr]"
   if { [IP::addr [LB::server addr] equals 10.60.252.6] } {
     snat 10.60.253.246
     set cas_selected "10.60.252.6"
     log local0. "selected CAS is $cas_selected"
     forward
   } elseif { [IP::addr [LB::server addr] equals 10.60.252.7] } {
     snat 10.60.253.247
     set cas_selected "10.60.252.7"
     log local0. "selected CAS is $cas_selected"
     forward
   } elseif { [IP::addr [LB::server addr] equals 10.60.252.8] } {
     snat 10.60.253.248
     set cas_selected "10.60.252.8"
     log local0. "selected CAS is $cas_selected"
     forward
   }
}

Aaron