Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

table incr timeout

Abed_AL-R
Cirrostratus
Cirrostratus

‎13-Mar-2021 04:09

Hi

 

Is there any way to create the 'table incr' entry without timeout

according to f5 documentation it will have timeout of 180 seconds

is there any other syntax i can use instead of it to not have the 180 seconds timeout?

 

This is part of the iRule I'm using:

set srcip [IP::remote_addr]  if { [ASM::violation count] > 0 } { set getCount [table incr $key] if { $getCount< $static::maxRate } { incr getCount 1 } else { table delete $key }

 

If there was no traffic for 3 minutes then the $key variable will be timeout, and the 'getCount' variable will be reset

Labels:
0 Kudos
1 REPLY 1

Abed_AL-R
Cirrostratus
Cirrostratus

‎13-Mar-2021 05:20

OK, solved

I used this syntax:

set srcip [IP::remote_addr] set curtime [clock second] set hash $curtime set key "count:$srcip:$hash"   if { [ASM::violation count] > 0 } { table add -subtable "countvio" $key "inserted" indef set getCount [table keys -subtable "countvio" -count] if { $getCount< $static::maxRate } { incr getCount 1 } else { table delete -all -subtable "countvio" }}

So the stategy was to create a subtable and insert a new unique key value (used current time seconds for that). And then counted the values in the subtable.

 

 

0 Kudos
Copyright © 2023 Khoros, LLC