Forum Discussion
Robert_Richmond
Aug 16, 2007Nimbostratus
I used data group lists instead of classes and tweaked yours to the irule below (probably unnecessary, but a good excercise for a new irule-er). When I apply the rule, the vip is looking for both tcp and udp profiles to be applied (due to the matchclass statements). Being configured as a standard vip, this is not possible. Will I need to configure this as a 'Performance (Layer 4)' type vip with '*All Protocols' selected?
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
When a client is accepted, if the port matches a port in the corresponding protocol data_group_list then forward to the pool. Else discard.
when CLIENT_ACCEPTED {
if { [matchclass [UDP::local_port] equals $::ciscoSecureUDP ] or [matchclass [TCP::local_port] equals $::ciscoSecureTCP ] } {
pool acs.deloitte.com_Wildcard
} else { discard }
}
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Thanks,
Rob