For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Ozzy's avatar
Ozzy
Icon for Cirrus rankCirrus
May 28, 2024

Virtual server makes distribution. how can I see the forwarding traff in detail

Hello , I have one virtual server for distributing traffic to the other virtual server.  I use one policy to select bakc end virtual server.  Is there any way to see while forwarding traffic, which...
application delivery
CA_Valli's avatar
CA_Valli
Icon for MVP rankMVP
May 28, 2024

Hi Ozzy, I'm sorry but I'm getting lost here, where is the traffic policy applied? Is there a total of 3 Virtual Server objects? 

In a scenario like the one you described, where a single IP resolves multiple FQDNs, I'm used to just applying all client-ssl profiles to a single Virtual Server, paying attention to https://my.f5.com/manage/s/article/K13452 settings : 

  • specifying the SNI on all clientssl profiles,
  • checking only one of them as "default SNI"
  • matching cipher suites on all profiles.

 

Then, I'd usually use an iRule to perform pool selection, based on the HTTP::host information