LDAP Proxy
Problem this snippet solves: Summary: An LDAP proxy used send read/write requests to different pools.
For anyone that is interested, I recently was posed with the problem of proxying ldap requests...
Published Mar 18, 2015
Version 1.0
Ganesh_Garg
Nimbostratus
NimbostratusHello Kai,
I have a requirement to capture the LDAP request(UID) in the F5 logs. we have LDAP virtual server configured on port 636. request you to please help in creating the IRULE. I have tried the below IRULE, But it only captures the client IP with event Client_Accepted. seems that ClientSSL_DATA is not even triggered.
when CLIENT_ACCEPTED {
TCP::collect
log local0. "Ldap query from [IP::client_addr]:[TCP::client_port] to [IP::local_addr]:[TCP::local_port]"
TCP::release
}
when CLIENTSSL_HANDSHAKE {
SSL::collect
}
when CLIENTSSL_DATA {
set payload [SSL::payload]
log local0. "LDAP query with UID [SSL::payload]"
SSL::release
}