For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

AbhishekMarat_2's avatar
AbhishekMarat_2
Icon for Nimbostratus rankNimbostratus
Mar 01, 2019

LTM - iRule to check monitor status and route traffic accordingly.

Hello,   I have a request from a customer for a VIP with only one backend server on port 443. They want 2 monitors assigned: HTTPS and TCP_8300 (check if its listening on port 8300). Requested co...
application delivery
iRules
LTM
AbhishekMarat_2's avatar
AbhishekMarat_2
Icon for Nimbostratus rankNimbostratus
Mar 04, 2019

The server should only be configured on 443 in the default pool. The default pool is assigned two monitors - HTTPS and TCP check to see if its listening on 8300. If either of 443 or 8300 monitor is down send traffic on port 8200. If both 443 and 8300 is down then mark pool offline (use default pool). So, i created the pool with the server on port 443. Assigned it both monitors. Set availability to 'ALL' which take down the pool and then through iRule I can route it to 8200. However, what i am not able to achieve is 'when both monitors are down, use the default pool'.

 

  • jaikumar_f5's avatar
    jaikumar_f5
    Icon for Noctilucent rankNoctilucent
    Mar 04, 2019

    Is this your requirement, look for the send traffic points.

    • Send traffic to 443
      port if both 443 & port 8300 are up.
    • 443 port member has dependency on port 8300, if port 8300 is down. Then 
      send traffic to member port 8200
      .
    • 443 port member has dependency on port 8300, if port 443 itself is down. Still 
      send traffic to member port 8200
      .
    • Are you saying when both 443 & 8300 are down, you dont want to send traffic to anything. Simply drop the packet.
  • AbhishekMarat_2's avatar
    AbhishekMarat_2
    Icon for Nimbostratus rankNimbostratus
    Mar 04, 2019

    Yes, thats exactly what the customer has requested. Thanks!