Help
CodeShare
Have some code. Share some code.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

HTTP / HTTPS syntax Monitor check from CLI

Stanislas_Piro2
Cumulonimbus
Cumulonimbus

on ‎30-Mar-2017 10:01 - edited on ‎05-Jun-2023 22:40 by Fog

Problem this snippet solves:

When creating monitor, we usually check web site availability with curl.

These commands allow to check if HTTP Monitor send string is correct

How to use this snippet:

from F5 cli (not tmsh) run following commands

Monitor HTTP:

SEND_STRING='Monitor String'
(echo -ne $SEND_STRING; cat) | nc 'Pool Member IP' 'Pool member port'

Monitor HTTPS:

SEND_STRING='Monitor String'
(echo -ne $SEND_STRING; cat) | openssl s_client -host 'Pool Member IP' -port 'Pool member port' -quiet

example:

SEND_STRING='GET / HTTP/1.1\r\nHost: www.company.com\r\nConnection: Close\r\n\r\n'
(echo -ne $SEND_STRING; cat) | nc 1.2.3.4 80

SEND_STRING='GET / HTTP/1.1\r\nHost: www.company.com\r\nConnection: Close\r\n\r\n'
(echo -ne $SEND_STRING; cat) | openssl s_client -host 1.2.3.4 -port 443 -quiet

Code :

No file

Tested this on version:

11.6
0 Kudos
Comments
Amresh008
Nimbostratus
Nimbostratus
‎29-Dec-2017 04:53

I tried running this on 12.1.1, but it did not do anything. Please suggest.

 

0 Kudos
Stanislas_Piro2
Cumulonimbus
Cumulonimbus
‎29-Dec-2017 05:51

Can you provide the command you tried?

 

0 Kudos
Amresh008
Nimbostratus
Nimbostratus
‎29-Dec-2017 23:50

(echo -ne "monitor string"; cat) | nc a.b.c.d xyz

 

a.b.c.d being the ip address of the pool member xyz being the pool member port

 

0 Kudos
Stanislas_Piro2
Cumulonimbus
Cumulonimbus
‎29-Dec-2017 23:57

I asked to check your monitor string 😉

 

0 Kudos
Ajit
Altostratus
Altostratus
‎06-Aug-2018 00:49

Hello Stanislas,

I tried the below command but it just shows me SSL errors. Can you assist?


(echo -ne "GET / HTTP/1.1\\r\\nHost: abc.com\\r\\nConnection: Close\\r\\n"; cat) | openssl s_client -connect 1.1.1.1:443 -quiet

47753692343424:error:14094410:SSL routines:SSL3_READ_BYTES:sslv3 alert handshake failure:s3_pkt.c:1293:SSL alert number 40 47753692343424:error:140790E5:SSL routines:SSL23_WRITE:ssl handshake failure:s23_lib.c:184:

It shows me the above errors after being connected.

Note: I do not have a DNS entry for abc.com in place

Regards,

Ajit

0 Kudos
Stanislas_Piro2
Cumulonimbus
Cumulonimbus
‎06-Aug-2018 02:02

Why did you add 2 \ in send string ? did you get it from tmsh which add a second \ in config file?

try this:

(echo -ne "GET / HTTP/1.1\r\nHost: abc.com\r\nConnection: Close\r\n"; cat) | openssl s_client -connect 1.1.1.1:443 -quiet
0 Kudos
Ajit
Altostratus
Altostratus
‎06-Aug-2018 04:43

Same result. I have client MA enabled on 1.1.1.1. What should I do to get past that? Does that matter?

 

Regards,

 

Ajit

 

0 Kudos
VRI_341747
Nimbostratus
Nimbostratus
‎10-Aug-2018 08:12

How can I use this command with NTLM authentication? The monitor works in the gui when credentials are specified but I get access denied from CLI.

 

Thanks,

 

LM

 

0 Kudos
Priyanga_Kalans
Nimbostratus
Nimbostratus
‎01-Nov-2018 22:00

Thanks a lot mate! This was a great find!!!

 

0 Kudos
Joey
Nimbostratus
Nimbostratus
‎02-Aug-2019 05:42

Is there partition/route domain involved?

if so, simply add ‘rdexec zzz’ before openssl where zzz stands for route domain ID

 

0 Kudos
Version history
Last update:
‎05-Jun-2023 22:40
Updated by:
Fog
Copyright © 2023 Khoros, LLC