Forum Discussion
jgranieri
Oct 01, 2014Nimbostratus
we had a similar situation... this is what we did:
Code
`
This event is triggered when a client -> BigIP connection is established
when CLIENT_ACCEPTED {
` Look in the Clear or the SSL Pools for the TCP port
if { [ class match [TCP::local_port] equals Data_group1 ] } {
Disable SSL, assign the pool from the class (and optionally log the pool selection)
SSL::disable
set app_pool [class match -value -- [TCP::local_port] equals Data_group2 ]
pool $app_pool
if { $static::LOG_ACCEPTED_REQ == 1 }{
log local0. "Cleartext pool selected: [IP::client_addr]:[TCP::client_port] -> [IP::local_addr]:[TCP::local_port] -> $app_pool"
}
} elseif { [ class match [TCP::local_port] equals Data_group1 ] } {
Assign the pool from the class (and optionally log the pool selection)
set app_pool [class match -value -- [TCP::local_port] equals Data_group2 ]
pool $app_pool
}
} else {
discard
if { $static::LOG_DROPPED_REQ == 1 }{
log local4.info "No pool selected: [IP::client_addr]:[TCP::client_port] -> [IP::local_addr]:[TCP::local_port]"
}
}
`
}
`Code