NimbostratusHi,
I have written an iRule for a Virtual Server (IP Forward - 10.1.1.1) to listen on multiple ports (range) and forward to real server with same IP address:
when CLIENT_ACCEPTED {
if {([TCP::local_port] >= 23001)
&& ([TCP::local_port] <= 23005) } {
node 10.1.1.1
} else reject}
Can someone tell me if my syntax is correct?
Thanks,
Bruce
NacreousYou have a missing close parenthesis after 'else'. You will also need to make sure you VIP listens on all ports too. Other than that your iRule looks ok
when CLIENT_ACCEPTED {
if {([TCP::local_port] >= 23001) && ([TCP::local_port] <= 23005)} {
node 10.1.1.1
} else {
reject
}
}
NimbostratusHi Lee, thanks for the reply. I have the Virtual Server configured as suggested, but it is still rejecting valid connections, any thoughts?
Thanks,
Bruce
NacreousTry adding some logging, you'll find the log entries in /var/log/ltm:
when CLIENT_ACCEPTED {
log local0. "recevied request from [TCP::local_port]"
if {([TCP::local_port] >= 23001) && ([TCP::local_port] <= 23005)} {
log local0. "forwarding to node"
node 10.1.1.1
} else {
log local0. "rejecting request from [TCP::local_port]"
reject
}
}