Forum Discussion
Sheila_Liu_8576
Nimbostratus
Nimbostratuspicking a pool member with source_addr persistence
Working on the following irule, no luck so far
the requirement is that when http request comes in, if the request is made by any poop member, connection should go back to the requsting member, there are two members in the pool.
If http request comes from user, use source_addr persistence.
I'm seeing request from poop memebrs not going to itself but also in /var/log/ltm, I do see the irule being hit.
Please help.
when HTTP_REQUEST {
if { [IP::addr [IP::client_addr] equals 172.19.10.70] } {
pool LMS-lms.lnh.bislab.pwj.com.80 member 172.19.10.70
log "hit member 172.19.10.70"
} elseif { [IP::addr [IP::client_addr] equals 162.66.195.95] } {
pool LMS-lms.lnh.bislab.pwj.com.80 member 162.66.195.95
log "hit member 162.66.195.95"
} else {
pool LMS-lms.lnh.bislab.pwj.com.80
persist source_addr 10800
log "hit pool"
}
}
8 Replies
- JRahm
Admin
I'm confused...the server's in the pool need to request something of themselves? Perhaps a greater picture of what you are trying to accomplish would be helpful. 
Sheila_Liu_8576unfortunately, yes. The servers are calling themselves.
This is due to a limitation in an application called saba. Saba referes to the URL even when the request is coming from the server itself. The idea in Saba was that the server can call contents anywhere using a URL, not limited to its own contents.- Sheila_Liu_8576yes, we are using snat
- JRahmYou could try this:
when CLIENT_ACCEPTED { if { [IP::addr [IP::client_addr] equals 172.19.10.70] } { use snat snat_a_IP } elseif { [IP::addr [IP::client_addr] equals 162.66.195.95] } { use snat snat_b_IP } } when HTTP_REQUEST { if { [IP::addr [IP::client_addr] equals snat_a_IP] } { pool LMS-lms.lnh.bislab.pwj.com.80 member 172.19.10.70 log "hit member 172.19.10.70" } elseif { [IP::addr [IP::client_addr] equals snat_b_IP] } { pool LMS-lms.lnh.bislab.pwj.com.80 member 162.66.195.95 log "hit member 162.66.195.95" } else { pool LMS-lms.lnh.bislab.pwj.com.80 persist source_addr 10800 log "hit pool" } }
This, of course, is assuming the client IP is snatted before the HTTP_REQUEST event occurs. Not tested! - Sheila_Liu_8576looks like I hit a bug. If I create a pool with only the server in it, then I refer to this pool instead of a pool member, it works.
anyone had seen this behavior before? - Uh, yeah. Read yesterday's posts. I gave a work-around.
- Click here: http://devcentral.f5.com/default.aspx?tabid=28&view=topic&forumid=5&postid=6988
- Sheila_Liu_8576Thanks for your reply. The workaround makes sense but somehow it's not working for me. see below client 172.19.10.70 not going to itself
[root@LB-6400-LH-BISLAB-1:Active] config b conn client 172.19.10.70 show all
VIRTUAL 162.66.65.141:http <-> NODE 162.66.195.95:http
CLIENTSIDE 172.19.10.70:48783 <-> 162.66.65.141:http
(pkts,bits) in = (5, 6992), out = (3, 1360)
SERVERSIDE 162.66.65.2:48783 <-> 162.66.195.95:http
(pkts,bits) in = (3, 1392), out = (4, 6592)
PROTOCOL tcp UNIT 1 IDLE 0 (300) LASTHOP 4093 00:30:96:b0:e4:00
