Forum Discussion

Nimbostratus

Feb 19, 2014

source address & source port persistence

Hi ! I have a virtual server that has a pool of 3 Citrix Secure Gateway servers. The VIP is FASTL4, with source address persistence and least conections LB. I would like to implment an irule that p...

Historic F5 Account

Feb 19, 2014

It looks like:

There should not be a problem with backends (Gateways) doing SSL offload as you're persisting on TCP level
The following example suggests that you first need to do "persist add uie": https://devcentral.f5.com/wiki/iRules.ProxyAuth.ashx

Thus the iRule transforms into:

when CLIENT_ACCEPTED { 
    set client_ip_port "[IP::client_addr]:[TCP::client_port]"
    persist uie $client_ip_port
}
when SERVER_CONNECTED {
    persist add uie $client_ip_port 3600
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

source address & source port persistence

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

CSV to Address External Datagroup File

ICMP Custom Source Address Monitor

Persisting SNAT Addresses in Link Controller Deployments

Is it possible to choose the access profile used based on source IP address?

Source address affinity persistence none

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS