Send to httpclass profile

Question

Hello, 
&nbsp;  
&nbsp; I've got an iRule that provides pool selection (fallback node) and I'd like to implement ASM security on HTTP requests and HTTP replies. 
&nbsp;  
&nbsp; One way to do that is to use an HTTP Class Profile with application security enabled. 
&nbsp;  
&nbsp; QUESTION : how to forward the requests from the HTTP Class Profile to the iRule ?   
&nbsp;  
&nbsp; Nota : I think security should be implemented before the selection of the pool.    
&nbsp;  
&nbsp;  
&nbsp; Here is my iRule : 
&nbsp;  
&nbsp; when HTTP_REQUEST { 
&nbsp;   if { [active_members pool_1] &gt;= 1 } { 
&nbsp;     pool pool_1 
&nbsp;   } else { 
&nbsp;     pool pool_2 
&nbsp;   } 
&nbsp; }  
&nbsp;  
&nbsp; Regards, 
&nbsp;  
&nbsp; VB

hoolio · Answer

If you're not specifying pools on the HTTP class, I think your rule should work fine.  You could also consider changing the event to CLIENT_ACCEPTED unless you specifically want to check the pool_1 state on every HTTP request. 
&nbsp;  
&nbsp; If you want to add pools to the HTTP classes you'd need to change the pool selection in the iRule to the HTTP_CLASS_SELECTED event. 
&nbsp;  
&nbsp; The request is still validated by ASM if the request matches the HTTP class filters and ASM is enabled on the class, regardless of when you specify a pool in the iRule. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

Send to httpclass profile

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

F5 BIG-IP Advanced WAF – DOS profile configuration options.

The TCP Send Buffer, In-Depth

Increase TCP Profile Send Buffers

Send OTP via sendgrid(email) API

iControl REST Cookbook - Virtual Server Profile (LTM Virtual Profiles)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS