Forum Discussion
NimbostratusNeed Help with I-Rule
We have deployed F5 in Azure it has limitation that we can only deploy one Virtual server on it , we have deployed a Virtual Server with all service ports but it has both SSL Client and Server profiles on it to server https traffic we now want to deploy the Virtual server with port 80 because our back end application is running on port 80 , Becuse of the limitation of Virtual server in Azure F5 iam looking for a i-rule that can forward the traffic depending on the FQDN and disable both client and Server SSL and forward the traffic to appropriate pool based on the FQDN . I have tried this i-rule what i get empty response . Any help will be appreciated .
when HTTP_REQUEST
{ switch -glob -- [string tolower [HTTP::host]] {
"seps1-tgt.paymentslab.ncr.com" { SSL::disable switch -glob -- [string tolower [HTTP::uri]] { "/processor*" { pool "tgt-dc1-trn" } } } } }
when SERVER_CONNECTED { if { $usessl == 0 } { SSL::disable } }
SnlCirrostratus
its easier to use LTM traffic policy here rather than irule
refer sample
https://f5-agility-labs-adc.readthedocs.io/en/latest/class3/module6/lab6.html
Uzair1Hi Snl ,
This will not help me as I cannot create more than one Virtual server in F5 due to its license limitation in Azure
Thanks
Uzair
Hi Uzair,
You can use port list option in VS for listening http and https traffic.
- Uzair1
Hi Eaa,
Thanks I have did the same , But my VS has both Client and Server SSL profile and I have an I-rule that re-direct to appropriate pool based on the FQDN/DNS name , I want to Bypass this both Client and SSL profile and send the traffic to appropriate pool based on DNS name .
Thanks
Uzair
- Uzair1
Want to Bypass client and Server SSL profile for http traffic .
- Uzair1
can some one please help .
- Snl
Give a Try using LTM Traffic policy
