Forum Discussion
Jim_Weis_43660
Nimbostratus
Nimbostratusmaintain persistence from a NATed address
Hello all,
I have some virtual desktops set up in a pool on my BigIP.
We have users connecting to them using RDP.
Since they are coming through with a NATed address, I cannot maintain persistence based upon their source address.
I have tried using MSRDP persistence, but it does not work too well because only the first 9 characters of the login ID are pulled out. This creates a huge issue when you have names that are 8 cahracters long or more. For example, Elizabeth.Smith and Elizabeth.Green would each derive the same persistence value.
I believe I can use universal persistence with an Irule to draw out the necessary info to come up with a uniquie persistence value.
Not being too versed in Irules.....yet, I was looking to see if anyone else has run into this and if they have an Irule that builds persistence using an IP address/port combo, or if anyone has built one pulling in the entire Microsoft login id.
Sorry, I'm looking for the easy way out if someone already has something laying around.
Thanks for anything you might be able to share!!!
Jim
Jim_Weis_43660Well, the jest of it is, and not only for this application that when addresses are coming from a NATed network or proxy, they all come across from the same address, so source address affinity is not practical. But, if I could find a universal persistence irule that could build a persistence record to include not only IP address, but the remote IP port, I would have something unique to persist on.
If you have something like this, or soemthing close that I could work with, It would be incredibly appreciated.
Also, since you seem to be pretty informed when it comes to Irules, is there a good publication or site that documents all of the fields available to build your Irules on.
Thanks again!!!
Jim
BCBS of Nebraska