is it something like this? if not, can you provide more detail?
[root@ve10:Active] config b virtual bar list
virtual bar {
snat automap
destination 172.28.19.79:20175
ip protocol 6
rules myrule
profiles {
http {}
myclientssl {
clientside
}
tcp {}
}
}
[root@ve10:Active] config b profile myclientssl list
profile clientssl myclientssl {
defaults from clientssl
nonssl enable
}
[root@ve10:Active] config b rule myrule list
rule myrule {
when CLIENT_ACCEPTED {
set is_ssl 0
}
when CLIENTSSL_HANDSHAKE {
set is_ssl 1
}
when HTTP_REQUEST {
if { [string tolower [HTTP::uri]] starts_with "/apps" } {
if { $is_ssl } {
pool foo1
} else {
pool foo2
}
}
}
}
[root@ve10:Active] config b pool foo1 list
pool foo1 {
members 200.200.200.101:80 {}
}
[root@ve10:Active] config b pool foo2 list
pool foo2 {
members 200.200.200.111:80 {}
}
ssl
[root@ve10:Active] config ssldump -Aed -nni 0.0 port 20175 or port 80 -k /config/ssl/ssl.key/default.key
New TCP connection 1: 172.28.20.11(41472) <-> 172.28.19.79(20175)
1 1 1350977338.6448 (0.0151) C>S SSLv2 compatible client hello
1 2 1350977338.6448 (0.0000) S>CV3.1(81) Handshake
1 3 1350977338.6448 (0.0000) S>CV3.1(953) Handshake
1 4 1350977338.6448 (0.0000) S>CV3.1(4) Handshake
1 5 1350977338.6468 (0.0019) C>SV3.1(262) Handshake
1 6 1350977338.6468 (0.0000) C>SV3.1(1) ChangeCipherSpec
1 7 1350977338.6468 (0.0000) C>SV3.1(36) Handshake
1 8 1350977338.6653 (0.0184) S>CV3.1(1) ChangeCipherSpec
1 9 1350977338.6653 (0.0000) S>CV3.1(36) Handshake
1 10 1350977338.6666 (0.0013) C>SV3.1(197) application_data
---------------------------------------------------------------
HEAD /apps/something HTTP/1.1
User-Agent: curl/7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79:20175
Accept: */*
---------------------------------------------------------------
New TCP connection 2: 200.200.200.10(41472) <-> 200.200.200.101(80)
1350977338.6688 (0.0010) C>S
---------------------------------------------------------------
HEAD /apps/something HTTP/1.1
User-Agent: curl/7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79:20175
Accept: */*
---------------------------------------------------------------
not ssl
[root@ve10:Active] config ssldump -Aed -nni 0.0 port 20175 or port 80
New TCP connection 1: 172.28.20.11(41470) <-> 172.28.19.79(20175)
1350977232.7057 (0.0007) C>S
---------------------------------------------------------------
HEAD /apps/something HTTP/1.1
User-Agent: curl/7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79:20175
Accept: */*
---------------------------------------------------------------
New TCP connection 2: 200.200.200.10(41470) <-> 200.200.200.111(80)
1350977232.7078 (0.0010) C>S
---------------------------------------------------------------
HEAD /apps/something HTTP/1.1
User-Agent: curl/7.15.5 (x86_64-redhat-linux-gnu) libcurl/7.15.5 OpenSSL/0.9.8b zlib/1.2.3 libidn/0.6.5
Host: 172.28.19.79:20175
Accept: */*
---------------------------------------------------------------