For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Nov 21, 2007

Valid events in STREAM_MATCHED event? (avoiding

Hi,     I was thinking that you could make decisions based on request or response data without actually collecting the HTTP data by using the stream profile. For example, this person (Click her...
application delivery
dev
devops
iRules
spark_86682's avatar
spark_86682
Historic F5 Account
Nov 27, 2007
Unfortunately, this really can't be done. Since the stream profile is designed to do minimal buffering of server response data, it's quite possible that the client would already have gotten part of the server response by the time the STREAM_MATCHED event fired. So if you could successfully do an HTTP::retry in that event, then the client could see part of the first response followed by all of the second, which is almost certainly not what you want. That's why it's critical to actually buffer the server response if you might retry the request (so the client only ever sees one response).

 

 

As far as a workaround, well, if you know that the error string always appears in the first N bytes, you could use TCP level commands to only buffer that many bytes, which would at least minimize the amount of buffering you do.