routing to a pool based on protocol

Question

I have have a set of optimization servers that I want to route all http traffic to, and I want all other non-http traffic on port 80 to route to a different pool. This is what I have, but when non-http traffic comes through, my else statement never seems to fire.&nbsp;
&nbsp;Is there a more elegant way to accomplish this?&nbsp;
&nbsp;when CLIENT_ACCEPTED {
&nbsp;TCP::collect 1024
&nbsp;        log "collecting"
&nbsp;}
&nbsp;when CLIENT_DATA {
&nbsp;        if {([TCP::payload] contains "HTTP") }{
&nbsp;  log "Optimization"
&nbsp;        pool Optimization_Pool
&nbsp;        log "Optimization Pool"
&nbsp;        }
&nbsp;        else {
&nbsp;  log "FW"
&nbsp;        pool Firewall_Pool
&nbsp;        }
&nbsp;        TCP::release
&nbsp;}&nbsp;
&nbsp;Thanks for the help.

hoolio · Answer

Hi,&nbsp;
&nbsp;Can you add a log statement in the CLIENT_DATA event before the if, to log the TCP::payload output?&nbsp;
&nbsp;What actually happens with non-HTTP requests? Are they also being sent to the optimization pool, or are they hanging?&nbsp;
&nbsp;Aaron

brandon_burns_8 · Answer

I added the following.  log "Payload =[TCP::payload]"&nbsp;
&nbsp;I never see anything in the logs with the payload,  I only see the "collecting" log entry.  It does not seem to ever get to the CLIENT_DATA portion of the rule.&nbsp;
&nbsp;I am using the 8800 platform with 9.4.

hoolio · Answer

I would guess that the client isn't sending the number of bytes you're waiting to collect.  Can you lower the collect to 10 or 100 and retest?&nbsp;
&nbsp;Aaron

brandon_burns_8 · Answer

I retested using the following.&nbsp;
&nbsp;when CLIENT_ACCEPTED {
&nbsp;TCP::collect 10
&nbsp;log "collecting"
&nbsp;}
&nbsp;when CLIENT_DATA {
&nbsp;log "Payload = [TCP::payload]
&nbsp;if {([TCP::payload 10] contains "HTTP") }{
&nbsp;log "Optimization"
&nbsp;pool Optimization_Pool
&nbsp;log "Optimization Pool"
&nbsp;}
&nbsp;else {
&nbsp;log "FW"
&nbsp;pool Firewall_Pool
&nbsp;}
&nbsp;TCP::release
&nbsp;}&nbsp;
&nbsp;I also noticed this in the release notes for 9.4.  Could this be causing an issue also?&nbsp;
&nbsp;Using TCP::release and TCP::connect commands (CR63722)
&nbsp;If you use the TCP::release command in a CLIENT_DATA event, and then use the TCP::collect command to collect a specific amount of data, the TMM service becomes unavailable. To avoid this issue, use the TCP::collect command without an argument, and then use logic to determine whether enough data has been collected in the CLIENT_DATA event.

hoolio · Answer

I'm fairly sure other people have used TCP::collect x in CLIENT_ACCEPTED and TCP::release in CLIENT_DATA, in 9.4.&nbsp;
&nbsp;I hadn't seen that CR before.  Thanks for pointing it out.  I checked AskF5 for more detail on it, but didn't find any solutions about it.&nbsp;
&nbsp;I think this issue doesn't apply to your rule, as you're using TCP::collect X in CLIENT_ACCEPTED and not using it in the CLIENT_DATA event.&nbsp;
&nbsp;Perhaps someone with access to CR notes could provide more detail on this?&nbsp;
&nbsp;If you change the collect to 10, do you get any logging in CLIENT_DATA?  Else, what if you do try it collecting without a byte count?&nbsp;
&nbsp;Aaron

Forum Discussion

routing to a pool based on protocol

9 Replies

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

IPv8 Would Fix My Routing Tables. It Will Never Ship.

Recent Discussions

Errors with AS3 3.56.0 with F5 17.5.1.6

f5 r5600 appliance issue with adding trunk to vlan

SSL Forward Proxy, iRules and Client Hello

F5 ASM/AWAF – violations logged but no learning suggestions generated

F5 VELOS Backplane Inter-Tenants Communication

Related Content

BIG-IP BGP Routing Protocol Configuration And Use Cases

Using the Model Context Protocol with Open WebUI

Future-Proofing Kubernetes Routing: From Standard Ingress to Role-Based CRDs

F5 MCP(Model Context Protocol) Server

IPv8 Would Fix My Routing Tables. It Will Never Ship.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS