Forum Discussion
Using HTTPClasses vs. iRules path & domain selection
Obviously HTTPClasses are very easy to configure and dummy proof where when we get into iRules, it can always get interesting (we are a large provider where lots of engineers touch lot of different LTMs)
From what I gather, LTM will only capture new flows when HTTPclasses are used so if there are multiple selections are done via HTTPClass, like /appA goes to POOL-AppA, /appB goes to POOL-AppB, and if persistence is enabled for the VS (e.g. cookie insert), when a user switches from appA to AppB things do not function.
Some F5 engineers tell us that HTTPClass should only be used for ASM purposes to filter ASM related traffic (bind ASM policy etc) and some of them tell us HTTPclasses are safe to use for any kind of traffic (with or without persistence). Currently we try to do everything with iRules, but I just want to see what your thoughts/experiences may be.
Regards, Haluk
- Nathan_Houck_65NimbostratusI believe that HTTP classes can be used for more than ASM. This SOL gives three scenarious in which HTTP classess are used. Could be helpful.
- Nathan_Houck_65NimbostratusI believe that HTTP classes can be used for more than ASM. This SOL gives three scenarios in which HTTP classess are used. Could be helpful.
- hoolioCirrostratusHi Haluk,
From: http://devcentral.f5.com/wiki/default.aspx/iRules/LogHttpClassSelection.html when HTTP_REQUEST { log local0.info "Client [IP::client_addr]:[TCP::client_port] -> [HTTP::host][HTTP::uri]" } when HTTP_CLASS_SELECTED { log local0.info "Client [IP::client_addr]:[TCP::client_port] -> [HTTP::host][HTTP::uri] went to [HTTP::class] HTTP class" } when HTTP_CLASS_FAILED { log local0.info "Client [IP::client_addr]:[TCP::client_port] -> [HTTP::host][HTTP::uri] did not match an HTTP class!" } when LB_SELECTED { log local0.info "Client [IP::client_addr]:[TCP::client_port] -> selected server: [LB::server]" } when SERVER_CONNECTED { log local0.info "Client [IP::client_addr]:[TCP::client_port] -> connected server: [IP::server_addr]:[TCP::server_port]" }
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com