Forum Discussion
Collin_Rodolitz
Nimbostratus
NimbostratusPool Logic with secure Virtual Server
I have run into a strange issue. I have a Virtual Server on the Big-IP which is handling https 443 requests.
I then have 2 pools both relating to a different Jboss instance to it's https port.
If I point the virtual server to either one of these pools directly, everything works fine. But, if I point the virtual server at a rules file that tries to decide between these two pools, my requests hang:
if (http_uri starts_with "/leadDataService_qa") {
use pool Webservices-secure-qa
}
else {
use pool Webservices-secure
}
Interestingly, I changed my irules file to just be just this:
use pool Webservices-secure-qa
and that worked fine and went to that pool.
And then I tried to make it just this:
use pool Webservices-secure
And that worked too.
But then if I put in that logic above, no good. It just hangs.
Any ideas?
- The request is encrypted. So there is no http_uri that the BIG-IP can see to evaluate. You might think the else clause would fire but I guess it makes as good of sense to skip that block.
Collin_RodolitzI had a suspicion it was something like that. Although I was hoping somehow the URI was still available even though it was encrypted. Is there a workaround of any sort?- The only way to switch on the URI would be to decrypt @ BIG-IP (& re-encrypt before sending on to the servers if required).
/deb
