Forum Discussion

Bob_Olson_10988's avatar
Bob_Olson_10988
Icon for Nimbostratus rankNimbostratus
Nov 16, 2007

Restrict access to nodes in a pool after pool is selected.

Hello;   I'm extremely new to iRules and am doing my best at teaching myself. These forums are a huge help. I've been asked to come up with something that I'm not sure is even possible.    ...
application delivery
dev
devops
iRules
dennypayne's avatar
dennypayne
Icon for Employee rankEmployee
Nov 17, 2007
Hi Bob,

Seems like the easiest thing to do would be to create 2 more pools, one with the "non-restricted" members only and a second pool with only the "restricted" members, then you can do a nested if to take care of this.

Something like (I have not checked the syntax of this on an actual box):


when HTTP_REQUEST {
if { [findstr [HTTP::payload] "log local0. "MULTICARD_AUTH Found sending request to TIBCO Server."
   if { [IP::client_addr] equals x.x.x.x } {
    pool soaq-ccauth-restricted
   } else {
     pool soaq-ccauth-open
   }
} else {
log local0. "String not found sending to Webmethods only pool."
pool wbomxrealq_5080
}
}

I can't think of a good way to apply an ACL to only some members of a pool but maybe I'm missing something...

Denny