Forum Discussion

Nimbostratus

Feb 19, 2014

source address & source port persistence

Hi ! I have a virtual server that has a pool of 3 Citrix Secure Gateway servers. The VIP is FASTL4, with source address persistence and least conections LB. I would like to implment an irule that p...

Historic F5 Account

Feb 19, 2014

It looks like:

There should not be a problem with backends (Gateways) doing SSL offload as you're persisting on TCP level
The following example suggests that you first need to do "persist add uie": https://devcentral.f5.com/wiki/iRules.ProxyAuth.ashx

Thus the iRule transforms into:

when CLIENT_ACCEPTED { 
    set client_ip_port "[IP::client_addr]:[TCP::client_port]"
    persist uie $client_ip_port
}
when SERVER_CONNECTED {
    persist add uie $client_ip_port 3600
}

Forum Discussion

source address & source port persistence

Recent Discussions

Deleting Old Certs

Hybrid Exchange traffic and Starttls

GCP F5 deployment - Active -Active with config Sync

IP Intelligence

BUG Query

Related Content

How to rewrite the source IP address to an URL

CSV to Address External Datagroup File

ICMP Custom Source Address Monitor

Persisting SNAT Addresses in Link Controller Deployments

Capturing source IP addresses for VIP