Need to look into a payload of https traffic and route it to appropriate pool based on some payload data

Rajsharma1803 · ‎01-Jul-2021

I am in need of looking into payload of incoming https traffic which is getting decrypted at F5 as F5 is working as SSL bridge in this case. I want to find a specific data in payload and then make a decision on which pool to forward the traffic to based on that data. Any help is appreciated.

Rob_Stonham · ‎02-Jul-2021

Hi,

You would need to use HTTP::collect to get the POST data and then use HTTP::payload to inspect it.

The example from here https://devcentral.f5.com/s/feed/0D51T00006j3PKbSAM should get you started with getting the data, the you can use LB::select to select the pool that you want to direct the traffic to.

Rob

Rajsharma1803 · ‎02-Jul-2021

it is encrypted traffic (https), will above method still works?

Rob_Stonham · ‎02-Jul-2021

If you are using SSL Bridging (decrypt/Big-IP processes/re-encrypt) it should.

Rajsharma1803 · ‎16-Jul-2021

Here is another thing which I failed to mention earlier.

Firstly, I need to look into all the encrypted payload first, then identify which field I need to use to make that forwarding decision. I just know what information I am seeking in the payload, but don't know which part of payload that information exists.
Once that is identified, I will then need to write an irule to make decisions based on that specific field.

So currently I am just trying to have a look at all of the payload which is encrypted. I hope I have made myself clear this time.

DevCentral

Need to look into a payload of https traffic and route it to appropriate pool based on some payload data

Khoros Kudos Award 2022