Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

amolari's avatar
amolari
Icon for Cirrostratus rankCirrostratus
May 07, 2015

multi profile uie persistence, match accross VS

hi I have an application that need to persist on the same backend. The application makes first a HTTPS connection, then a TCP connection and would eventually switch to udp connection. It use its ow...
application delivery
availability
deployment
devops
irules
LTM
uie
nitass's avatar
nitass
Icon for Employee rankEmployee
May 07, 2015

got it.

e.g.

 http virtual server

root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual barhttp
ltm virtual barhttp {
    destination 172.28.24.10:80
    ip-protocol tcp
    mask 255.255.255.255
    persist {
        myuie {
            default yes
        }
    }
    pool foohttp
    profiles {
        http { }
        tcp { }
    }
    rules {
        quxhttp
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    vs-index 46
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foohttp
ltm pool foohttp {
    members {
        200.200.200.101:80 {
            address 200.200.200.101
        }
        200.200.200.111:80 {
            address 200.200.200.111
        }
    }
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm persistence universal myuie
ltm persistence universal myuie {
    app-service none
    defaults-from universal
    match-across-virtuals enabled
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm rule quxhttp
ltm rule quxhttp {
    when HTTP_REQUEST {
  set id [URI::query [HTTP::uri] id]
  persist uie $id
}
when HTTP_RESPONSE {
  log local0. "\[persist lookup uie $id\]=[persist lookup uie $id]"
}
}

 tcp virtual server

root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm virtual bar999
ltm virtual bar999 {
    destination 172.28.24.90:999
    ip-protocol tcp
    mask 255.255.255.255
    persist {
        myuie {
            default yes
        }
    }
    pool foo999
    profiles {
        tcp { }
    }
    rules {
        qux999
    }
    source 0.0.0.0/0
    source-address-translation {
        type automap
    }
    vs-index 47
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm pool foo999
ltm pool foo999 {
    members {
        200.200.200.101:999 {
            address 200.200.200.101
        }
        200.200.200.111:999 {
            address 200.200.200.111
        }
    }
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm persistence universal myuie
ltm persistence universal myuie {
    app-service none
    defaults-from universal
    match-across-virtuals enabled
}
root@(ve11c)(cfg-sync In Sync)(Active)(/Common)(tmos) list ltm rule qux999
ltm rule qux999 {
    when CLIENT_ACCEPTED {
  TCP::collect 1
}
when CLIENT_DATA {
  set id [TCP::payload 1]
  persist uie $id
  log local0. "\[persist lookup uie $id\]=[persist lookup uie "$id any"]"
}
}

 /var/log/ltm

[root@ve11c:Active:In Sync] config  tail -f /var/log/ltm
May  7 22:45:41 ve11c info tmm[5649]: Rule /Common/quxhttp : [persist lookup uie 1]=/Common/foohttp 200.200.200.101 80
May  7 22:45:51 ve11c info tmm[5649]: Rule /Common/qux999 : [persist lookup uie 1]=/Common/foohttp 200.200.200.101 80