Forum Discussion
nitass
Feb 17, 2012Employee
e.g.
[root@ve1023:Active] config b virtual bar list
virtual bar {
snat automap
destination 172.28.19.79:443
ip protocol 6
rules myrule
profiles {
clientssl {
clientside
}
http {}
tcp {}
}
}
[root@ve1023:Active] config b rule myrule list
rule myrule {
when HTTP_REQUEST {
switch -glob [HTTP::uri] {
"/path1*" {
HTTP::header replace Host "node1.mycustomer.com:8081"
HTTP::uri "/whateverpath"
node 200.200.200.101 8081
}
default { do something else }
}
}
}
[root@ve1023:Active] config ssldump -Aed -nni 0.0 port 443 or port 8081 -k /config/ssl/ssl.key/default.key
New TCP connection 1: 172.28.19.251(41320) <-> 172.28.19.79(443)
1 1 1329462893.2149 (0.0180) C>S SSLv2 compatible client hello
1 2 1329462893.2149 (0.0000) S>CV3.1(81) Handshake
1 3 1329462893.2149 (0.0000) S>CV3.1(692) Handshake
1 4 1329462893.2149 (0.0000) S>CV3.1(4) Handshake
1 5 1329462893.2170 (0.0020) C>SV3.1(134) Handshake
1 6 1329462893.2170 (0.0000) C>SV3.1(1) ChangeCipherSpec
1 7 1329462893.2170 (0.0000) C>SV3.1(36) Handshake
1 8 1329462893.2202 (0.0031) S>CV3.1(1) ChangeCipherSpec
1 9 1329462893.2202 (0.0000) S>CV3.1(36) Handshake
1 10 1329462893.2222 (0.0020) C>SV3.1(193) application_data
---------------------------------------------------------------
GET /path1/test HTTP/1.1
User-Agent: curl/7.15.5 (i686-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: portal.mycustomer.com
Accept: */*
---------------------------------------------------------------
New TCP connection 2: 200.200.200.10(41320) <-> 200.200.200.101(8081)
1329462893.2239 (0.0015) C>S
---------------------------------------------------------------
GET /whateverpath HTTP/1.1
User-Agent: curl/7.15.5 (i686-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: node1.mycustomer.com:8081
Accept: */*
---------------------------------------------------------------