Forum Discussion

Matthew_Hutchin's avatar
Matthew_Hutchin
Icon for Nimbostratus rankNimbostratus
Mar 18, 2009

Reset Packets from Customer

Has anyone done or heard of an iRule that will allow you to move traffic to a different VIP or pool based on the number of reset packets coming from a single IP Address

 

 

Thanks

 

 

Matt
application delivery
dev
devops
iRules

4 Replies

  • dennypayne's avatar
    dennypayne
    Icon for Employee rankEmployee
    Mar 19, 2009
    In theory you could use the session command to populate a list of servers and/or clients that went over a reset count (which you would also have to keep track of over time), and use the virtual command to send anybody in that list to another vip, but it would be extremely computationally expensive and probably a good way to kill the box.

     

     

    Denny
  • hoolio's avatar
    hoolio
    Icon for Cirrostratus rankCirrostratus
    Mar 20, 2009
    I don't think you can actually get TCP layer details on who has closed a connection or how. So like cmbhatt suggests, I don't think this is possible. If you could get that level of detail, like Denny says, it would take a lot of resources to manage this.

     

     

    What issue are you actually trying to address? Maybe there is a different route you could take.

     

     

    Aaron
  • Matthew_Hutchin's avatar
    Matthew_Hutchin
    Icon for Nimbostratus rankNimbostratus
    Mar 20, 2009
    So here is my issue. I work for an online credit card processing company and when some customer transactions begin to fail the customer starts to send RST packets. When this behavior starts to happen it gets out of hand very quickly. It only happens with a few customers at a time and I can make a manual change to a triage VIP. So what I am trying to do is when these RST packets begin to increase, I want to automaticlly move the offenders to my triage VIP.

     

     

    Any help with this is greatly apprecited.

     

     

    Thanks

     

     

    Matt