For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Vishal_96707's avatar
Vishal_96707
Icon for Nimbostratus rankNimbostratus
Feb 19, 2008

Selective HTTPS redirection

I am having following requirement in which the servers in the pool should talk to the virtual server using HTTP only while all other users should redirect to HTTPS. The requirement for servers tal...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Mar 04, 2008
nmenant is correct. [IP::remote_addr] in clientside events (like CLIENT_ACCCEPTED and HTTP_REQUEST) and IP::client_addr in any event should be the source IP address in the packets. I expect that if you apply SNAT to the connection in the rule, the source address is only modified on the serverside connection. I'm pretty sure there isn't any way to affect the IP::remote_addr value in a rule. If you're seeing a different IP than you're making the request from, I think there has to be a device between the client and the VIP which is performing source address translation.

 

 

Aaron