Forum Discussion
JasonHeffner_71
Jan 16, 2009Nimbostratus
ProxyPass redirect problem
I'm having some strange issues with proxypass and redirects. I have proxypass setup as follows
/login some.server.edu/login connectstagingapp
/manage some.server.edu/manage connectstagingapp
and generally this works as expected. However when I attempt to do a response.redirect in asp which is behind proxypass to a url outside on the same server, the BigIP will continue to serve files through proxypass for all urls on the host, even those that aren't specifically listed in the Data Group List.
The stranger thing this is dependent on browser, where this is the case on Firefox and IE, Safari will correctly handle the redirect.
Does anyone have an idea what might be causing this?
Thanks
- hooleylistCirrostratusCan you enable logging on the iRule and post anonymized copies of the logs from a success and a failure?
- JasonHeffner_71NimbostratusChecking out the debug log it appears that it is working correctly. The /login is proxy'd, however when being transferred to /admin I'm still get responses from the backend server that is being served through proxypass only, even though in the log it says "no rule found".
- JasonHeffner_71NimbostratusTo note if I leave the page alone for about two minutes and click refresh it will go to the correct server then.
- JasonHeffner_71NimbostratusThe first was a failure. This is a log from a success under Safari.
- Kirk_Bauer_1018NimbostratusUnless I'm missing something here, you are only using ProxyPass to choose alternate pools in those two cases. If so, I recommend using HTTP Classes to do the same thing a lot more efficiently and with less hassle.
- JasonHeffner_71NimbostratusI'm willing to try using HTTP classes, however some of the backend authentication may or may not work, which was why I was going with the ProxyPass rule first. Are there any examples that I can code this from, as I am very new to the BigIP? This is really odd behavior for the ProxyPass irule though, if anyone still has some idea what's happening?
- hooleylistCirrostratusIs this the symptom of the failure?
- JasonHeffner_71NimbostratusYes, I expect the failed match to go to the default pool on the VIP. It works for everything except when I try to redirect back to the default pool from within an alternate pool specified in the datagroup.
- hooleylistCirrostratusI think there are two possible issues with the ProxyPass iRule:
- hooleylistCirrostratusActually, a lot of the rule doesn't seem to be working for me as I would have expected. I'll see if I can test it more thoroughly later. For now, can you try replacing this section:
if {$newpool != ""} { pool $newpool if {$snataddr != ""} { snat $snataddr HTTP::header insert X-Forwarded-For [IP::remote_addr] } }
if {$newpool eq ""} { pool $default_pool } else { pool $newpool if {$snataddr != ""} { snat $snataddr HTTP::header insert X-Forwarded-For [IP::remote_addr] } }
when CLIENT_ACCEPTED { Get VIP's default pool name set default_pool [LB::server pool] }
when HTTP_RESPONSE { if {1 != $bypass} {
when HTTP_RESPONSE { if {$bypass == 1} { Disable the stream filter by default STREAM::disable } else {
Recent Discussions
Related Content
Â
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects