For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

R_Marc's avatar
R_Marc
Icon for Nimbostratus rankNimbostratus
Jun 13, 2014

Sideband usage opinions (please critique)

I was given an automation requirement form a development team using some java caching zzzzzzzzzz. what? oh, right...they wanted to be able to purge the cache via a script/rest call. This call was a...
application delivery
devops
iRules
Yann_Desmarest_'s avatar
Yann_Desmarest_
Icon for Nacreous rankNacreous
Jun 13, 2014

Hello,

 

This is strange, this sideband connection should not work because you try to connect to a backend listening on 443 (normally https) : 10.0.0.1:443

 

In order to be able to connect to an https backend using sideband, you have to configure a layered Virtual Server listening on http (1.1.1.1:80) and assign a ssl server profile and the corresponding pool of https backends.

 

I think that the following lines could trigger errors in specific scenario because there is some case "my_data" stay undefined after the HTTP_REQUEST event : when HTTP_RESPONSE { HTTP::respond 200 content "$my_data" }

 

R_Marc's avatar
R_Marc
Icon for Nimbostratus rankNimbostratus
Jun 13, 2014
Thanks for the feedback. This is a work in progress, so I'm sure it'll morph.I intend to add ssl client authentication to the call, so the calls will be minimal and single threaded.