Forum Discussion
ssl and non SSL over the same VS
Hi,
How do I use iRule to determine the income TCP connection have SSL/TLS handshake, if there is SSL/TLS handshake then have Client-SSL profile and load balance to a specific Server Pool, i...
It should be possible to inspect the contents of the first TCP packet that the client sends to see if it's SSL or not. Something like:
when CLIENT_ACCEPTED {
TCP::collect 1
}
when CLIENT_DATA {
if { [TCP::payload] contains "SSL" } {
pool SSL_pool
} else {
pool nonSSL_pool
}
}They key is going to be determining how to differentiate between the two. I don't know what an SSL handshake packet looks like; you'll have to determine that on your own. Once you know, if you need help turning that information into an iRule, don't hesitate to post here for more assistance.
Good luck!
