host
10 TopicsBIG-IP : iRule to route uri-forms for all hosts
F5 BIG-IP Virtual Edition v11.4.1 (Build 635.0) LTM on ESXi My BIG-IP is configued with virtual-servers specific to hostname : VIP-1 handles www.example1.com VIP-2 handles www.example2.com DNS routes www.example1.com to VIP-1 IP and www.example2.com to VIP-2 IP For all hostnames, I need to route certain uri-forms to a an alternate traffic-manager ( pool_alt_tm ). My idea is to create a single iRule and add it to VIP-1 and VIP-2. Here's my iRule : when HTTP_REQUEST { set route_to_alt_tm 0 switch -glob [string tolower [HTTP::uri]] { "/best-pool*" - "/best-bar*" - "/most-romantic*" { set route_to_alt_tm 1 } "/about/termsandconditions.html" - "/about/yourpersonalinfo.html" - "/about/rewards.html" { set route_to_alt_tm 1 } } if {$route_to_alt_tm} { pool pool_alt_tm event disable all } } Are there any potential problems with not explicitly checking that request host matches www.example1.com --or-- www.example2.com ? Any drawbacks to this approach ?583Views0likes7Commentsrewrite uri with datagroup
Hi I'm new to irules and have got where I am but looking at other irules we have, but am still struggling. I have a request from marketing to host a number (40) of small websites. Rather than setting up a new vip/pool/node/website for each one I would like to inspect the hostheader, forward it to a pool, rewrite the uri and be invisible to the user. This way I can simply copy the content to a single website. e.g. nick.domain.co.uk/* -> forward to pool POC_Boxes -> uri rewritten to /nick/* alan.domain.co.uk/* -> forward to pool POC_Boxes -> uri rewritten to /alan/* lara.domain.co.uk/* -> forward to pool POC_Boxes -> uri rewritten to /lara/* I have been able to get this working using a switch irule but would prefer a datagroup as it is easier to maintain going forward. However, I am having trouble reading data from the datagroup here is my switch irule when HTTP_REQUEST { set marketingURI "[HTTP::uri]" switch -glob -- [string tolower [URI::decode [HTTP::host]]] \ "nick.domain.co.uk" { HTTP::uri "/nick$marketingURI" pool POC_boxes } switch -glob -- [string tolower [URI::decode [HTTP::host]]] \ "lara.domain.co.uk" { HTTP::uri "/lara$marketingURI" pool POC_boxes } switch -glob -- [string tolower [URI::decode [HTTP::host]]] \ "alan.domain.co.uk" { HTTP::uri "/alan$marketingURI" pool POC_boxes } else { HTTP::redirect "http://www.domain.com" } } Here is my datagroup irule when HTTP_REQUEST { if { [class match [string tolower [HTTP::host]] starts_with POC_DGL_Marketing_trades] } { set url_URI [class match -value [string tolower [HTTP::host]] starts_with POC_DGL_Marketing_trades] set marketingURI "$url_uri[HTTP::uri]" HTTP::uri "$marketingURI" pool POC_boxes } else { HTTP::redirect "http://www.domain.com" } log local0. "Marketing Trades [HTTP::host]" } Here is my datagroup Name Value nick.domain.co.uk /nick alan.domain.co.uk /alan lara.domain.co.uk /lara Thanks Nick647Views0likes7CommentsIrule to block request from amazonaws.com
Hello, I have an irule to block request from amazonaws.com bad crawlers (millions of requests a day) but my irule doesn't work. Total executions is 0.. Here is the code : when HTTP_REQUEST { if { [matchclass [string tolower [HTTP::header Host]] contains blacklist_host] } { reject } } In my datagroup blacklist_host, I have amazonaws.com entry. If someone has a solution. Thank you782Views0likes4CommentsQuestion concerning log
Hello everybody, I have a question concerning the process syslog-ng. I saw on log following information: Fri Jan 24 03:50:02 CET 2020 notice F5-Material syslog-ng[3708] Configuration reload request received, reloading configuration; Fri Jan 24 06:35:28 CET 2020 F5-Material syslog-ng ********************************************** I understand that the first log concern a daily rotation of the log but what is the second log with *** ? Tuere is a lot of occurence during this time on every F5. Thank you for your help. Best regards.251Views0likes1CommentvCMP host and compatible guest version
I have three devices (2 - i7800 and 1 - i10800) with vCMP. I want to know if I can upgrade a guest to version 13 or 14, the host are running a 12.1.3.x version. I already checked the vCMP host and compatible guest version matrix, but it says nothing about 12.1.3.x versionSolved943Views0likes1CommentForwarding to Different Port Replaces the Host Header
We use F5 in front of an AWS ALB for firewall purposes. In our virtual server, we forward our https requests to port 85. When the request arrives at our web tier, the request has the host header of our external url with ":85" appended to it. We want the behaviour to be when the request is forwarded, even to a different port, the host header remains the same in order for OpenID to work correctly. Please let me know if there is a workaround for this, and thanks in advance.322Views2likes0CommentsIrule modify host, uri on response
Hello, The scenario is that we have url that needs to be translated to another url. So this needs to be done at the request. And for the response the url needs to be translated back to its original url. For the request this works and this is how we have done this. when HTTP_REQUEST { if { ([HTTP::host] equals "test.domain.be") } { set uris [HTTP::uri] set newuri "/test[string range [string tolower [HTTP::uri]] 0 end]" HTTP::uri $newuri HTTP::host "test.newdomain.be" } } So the user gives in a url. for example: test.domain.be/abc. We translate this into: test.newdomain.be/test/abc. So there is uri and host translation. How can we do this for the response? So everything what we did here but then in reverse?460Views0likes1CommentViprion host, configure IP for management
Hi, I have a BIG-IP VPR-B4300, with some VCMP . The host and the guests have a management IP in out of band network. For some reasons all hosts and guests must be managable also on a NOT Management interface. For the guests I selected a self ip already configured but the problem is on the host, the only L3 interface is the management. Do you think it is feasible configure a self ip on the host and make it reachable for management?328Views0likes1CommentHTTP Host modification
Howdy all, In the middle of a mid-sized data center migration for our clients to a new set of F5s. We want to give clients the ability to test migration before we move them permanently. The idea is to give them a test URL or testclientname.companyname.com but have an iRule trim the "test" off the http host and redirect to their new production url clientname.companyname.com. Is that something that is possible?380Views0likes1CommentViprion without vCMP to Viprion with vCMP
hey everyone! We have a viprion in production right now (vCMP not provisioned) and we are planning on activating it. We will be creating the Guests (2 specifically). My question is, is it possible to load the UCS of the current configuration (without vCMP) to the Guests that we will be creating? if possible, am i going to load the full UCS because from what I know, network configurations are configured in the Host level. How should we approach this scenario? Thank you for responding!199Views0likes1Comment