TCL error: Rule after convert irule with otcu

Question

Hello everybody,&nbsp;
&nbsp;I am having problems with a irule converted with the utility OTCU ( from v4.5 to v9.2.3) and I am receiving the following message on /var/log/ltm &nbsp;
&nbsp;TCL error: Rule Rule-OSN-IN  -  Error: No serverside connection established (line 1)     invoked from within "server_port"&nbsp;
&nbsp;But there is no error with the comand "b load".&nbsp;
&nbsp;This is the irule after OTCU ( irule for v9.2.3 )&nbsp;
&nbsp;rule Rule-OSN-IN {
&nbsp;   when CLIENT_ACCEPTED {
&nbsp;        if { [server_port] == 25  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 80  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 20  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 21  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 22  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 23  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 143  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 110  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        elseif { [server_port] == 4201  } {
&nbsp;            use pool osn-in
&nbsp;        }
&nbsp;        else {
&nbsp;            use pool OSN-Salida_Directa
&nbsp;        }
&nbsp;    }
&nbsp;}&nbsp;
&nbsp;Could anybody help me ?&nbsp;
&nbsp;The port can be TCP or UDP. &nbsp;
&nbsp;Many thanks in advance.

hooleylist · Answer

I think the most efficient way to test the server port would be to use a switch statement.  Also, the way to reference the server port in 9.x is TCP::local_port in the client side context.  
Here is an example rule:
rule Rule-OSN-IN {
   when CLIENT_ACCEPTED {
      set vip_port [TCP::local_port]
      switch $vip_port {
         25 { pool osn-in }
         80 { pool osn-in }
         default  { pool default_pool }
      }
   }
}
Note that I haven't checked the exact syntax.  You may need to break the switch cases up onto separate lines.
If you run into any problems, try posting again here with the rule you tested and any errors.
Aaron

miguel_melendez · Answer

Hi Hoolio,&nbsp;
&nbsp;Many thanks for your reply.&nbsp;
&nbsp;I am going to check and I tell you the results.&nbsp;
&nbsp;Best regards.

miguel_melendez · Answer

Hi,&nbsp;
&nbsp;I can not use that irule due to my traffic can be UDP or TCP.&nbsp;
&nbsp;server_port ( version 4.5 ) can be used for both, but I can not see any other command on version 9 for the same result.&nbsp;
&nbsp;I am using Performance (layer4 ) for my virtual server, any protocols, source_address persistance. &nbsp;
&nbsp;Thanks in advance

uni · Answer

How about something along these lines (untested):
rule Rule-OSN-IN {
   when CLIENT_ACCEPTED {
      switch [IP::protocol] {
          6 { set vip_port [TCP::local_port] }
         17 { set vip_port [UDP::local_port] }
         default { event disable }
      }
      switch $vip_port {
         25 { pool osn-in }
         80 { pool osn-in }
         default  { pool default_pool }
      }
   }
}

miguel_melendez · Answer

Many thanks,&nbsp;
&nbsp;I have tried to use it, but ir is not possible due to dependind of the type of the VS I receive several errors.&nbsp;&nbsp;
&nbsp;1.- VS  Performance(L4) &nbsp;
&nbsp;I tried to use this type due to I can receive UDP or TCP traffic, but I receive the following error: &nbsp;
&nbsp;TCP::local_port in rule (Rule-OSN-IN) requires an associated TCP or FASTHTTP profile on the virtual server (vs_Control_AcUs_any). &nbsp;
&nbsp;2.- VS  Forwarding IP &nbsp;
&nbsp;The same problem. I need a TCP/UDP profile. And in this case this VS type can not use persistance.&nbsp;
&nbsp;3.- VS Standard &nbsp;
&nbsp;If I configure TCP as profile LTM gives me the error :&nbsp;
&nbsp;UDP::local_port in rule (Rule-OSN-IN) requires an associated UDP profile on the virtual server (vs_Control_AcUs_any). &nbsp;&nbsp;&nbsp;
&nbsp;At the end I have created two VS ( standard ), one with TCP and one for UDP profile. And I have configured two Irules using your ideas.&nbsp;
&nbsp;This one for TCP :&nbsp;
&nbsp;rule Rule-OSN-IN {&nbsp;
&nbsp;   when CLIENT_ACCEPTED {&nbsp;
&nbsp;      switch [IP::protocol] {&nbsp;
&nbsp;          6 { set vip_port [TCP::local_port] }&nbsp;
&nbsp;         default { event disable }&nbsp;
&nbsp;      }&nbsp;
&nbsp;      switch $vip_port {&nbsp;
&nbsp;         25 { pool osn-in }&nbsp;
&nbsp;         80 { pool osn-in }&nbsp;
&nbsp;         default  { pool default_pool }&nbsp;
&nbsp;      }&nbsp;
&nbsp;   }&nbsp;
&nbsp;}&nbsp;&nbsp;
&nbsp;Many thanks for your help.&nbsp;&nbsp;&nbsp;

Forum Discussion

TCL error: Rule after convert irule with otcu

6 Replies

Recent Discussions

ltm policy asm_auto_l7_policy

MAC address not showing up in LLDP packet

F5Access | MacOS Sonoma

Active- Active HA setup

syslog server connection

Related Content

Alteon Config Converter

Unbreaking the Internet and Converting Protocols

Insufficient permissions BIG-IQ login error

Convert curl command to BIG-IP Monitor Send String

Convert .htaccess rewrite rules to iRule