Forum Discussion

Abtin_1112's avatar
Abtin_1112
Icon for Nimbostratus rankNimbostratus
Mar 01, 2011

not able to do a fallback from an HTTPS VS to a sorry page running HTTP

hi all,     i have no experience with irules, it would be great if somebody can help me to solve this problem.   i've already configured a vs with service port 443, a pool including two reals...
application delivery
devops
irule editor
iRules
hooleylist's avatar
hooleylist
Icon for Cirrostratus rankCirrostratus
Mar 01, 2011
Hi Abtin,

Do you have your sorry server configured in the main pool of servers? Are the main servers listening on 443 with a server SSL profile enabled on the virtual server? Does the sorry server listen on port 80?

If so, you could set the priority on the sorry server to be lower than the main members. You can set the 'Priority Group Activation' to 'less than x' where x is the number of main servers in the pool. You could then use an iRule which disables serverside SSL (and persistence?) for the sorry server:

http://devcentral.f5.com/wiki/default.aspx/iRules/lb__server

http://devcentral.f5.com/wiki/default.aspx/iRules/persist

http://devcentral.f5.com/wiki/default.aspx/iRules/ssl__disable 


when LB_SELECTED { 

    Check if the current selected server is less than the main pool members' priority 
   if { [LB::server priority] < 25 } {

       Disable serverside SSL
      SSL::disable serverside

       Disable persistence?
      persist none
   }
}

If I've misinterpreted your scenario, can you provide more detail on what you're trying to do?

Thanks, Aaron