cancel
Showing results for 
Search instead for 
Did you mean: 

Need to look into a payload of https traffic and route it to appropriate pool based on some payload data

Rajsharma1803
Nimbostratus
Nimbostratus

I am in need of looking into payload of incoming https traffic which is getting decrypted at F5 as F5 is working as SSL bridge in this case. I want to find a specific data in payload and then make a decision on which pool to forward the traffic to based on that data. Any help is appreciated.

4 REPLIES 4

Rob_Stonham
Cirrus
Cirrus

Hi,

 

You would need to use HTTP::collect to get the POST data and then use HTTP::payload to inspect it.

 

The example from  here https://devcentral.f5.com/s/feed/0D51T00006j3PKbSAM should get you started with getting the data, the you can use LB::select to select the pool that you want to direct the traffic to.

 

Rob

 

it is encrypted traffic (https), will above method still works?

Rob_Stonham
Cirrus
Cirrus

If you are using SSL Bridging (decrypt/Big-IP processes/re-encrypt) it should.

Here is another thing which I failed to mention earlier.

  1. Firstly, I need to look into all the encrypted payload first, then identify which field I need to use to make that forwarding decision. I just know what information I am seeking in the payload, but don't know which part of payload that information exists.
  2. Once that is identified, I will then need to write an irule to make decisions based on that specific field.

 

So currently I am just trying to have a look at all of the payload which is encrypted. I hope I have made myself clear this time.