Forum Discussion
kona2-9_51980
Nimbostratus
NimbostratusTrying to create an iRule to serve multiple http and https pools based off of a single VIP
I am attempting to create a single vip looking for port * that when requests are recieved it will look at the uri and decide which pool to direct the traffic to.
I have four pools :
tes...
kona2-9_51980Nimbostratus
NimbostratusI have decided to split the iRule in to two parts and config is below. HTTP traffic is working with no problems. HTTPS on the other hand, fails with a 400 error if only clientssl profile is selected. If bot ssl proviles serverssl and clientssl are selected i get a reset. Does anyone know if there is a way for me to use the servername portion of the client hello packet? I am not sure if the http::host might not be getting hit. Also, on a side note if I https directly to the server i do get the correct page.
test-port80
10.102.27.237:80
http profile: http
irule : test-vip-80
when HTTP_REQUEST {
switch [TCP::server_port] {
"80" {
switch -glob [string tolower [HTTP::host]] {
"*testa.org" { pool testa.org }
"*testb.org" { pool testb.org }
}
}
}
}
============================================================
test-port443
10.102.27.237:443
http profile: http
clientssl
irule : test-vip-443
when HTTP_REQUEST {
switch [TCP::server_port] {
"443" {
switch -glob [string tolower [HTTP::host]] {
"*testa.org" { pool testa.org-ssl }
"*testb.org" { pool testb.org-ssl }
}
}
}
}
