Rate limiting traffic for exchnage OAB using source ip addresses/subnets
Hello There, I have a single VIP that takes care of multiple client requests for MS exchange 2013 like outlook web access, offline address book etc and i have achieved it using I-rules.
Here is what my irule looks like:
Exchange 2013 iRule to select pool without persistence when all Exchange HTTP-based services are accessed through the same virtual server.when HTTP_REQUEST { switch -glob -- [string tolower [HTTP::path]] { "/microsoft-server-activesync" { pool Exchange_prod_2013_as_pool7 COMPRESS::disable CACHE::disable return } "/owa*" {
pool Exchange_prod_2013_owa_pool7
return
}
"/ecp*" {
Exchange Control Panel.
pool Exchange_prod_2013_owa_pool7
return
}
"/ews*" {
Exchange Web Services.
pool Exchange_prod_2013_oa_pool7
COMPRESS::disable
CACHE::disable
return
}
"/oab*" {
Offline Address Book.
pool Exchange_prod_2013_oa_pool7
persist none
return
}
"/rpc/rpcproxy.dll" {
Outlook Anywhere.
pool Exchange_prod_2013_oa_pool7
COMPRESS::disable
CACHE::disable
return
}
"/autodiscover*" {
Requests for Autodiscovery information.
pool Exchange_prod_2013_ad_pool7
persist none
return
}
default {
pool Exchange_prod_2013_owa_pool7
}
}
} when HTTP_RESPONSE { if { [string tolower [HTTP::header values "WWW-Authenticate"]] contains "negotiate"} { ONECONNECT::reuse disable ONECONNECT::detach disable NTLM::disable } if {[HTTP::header exists "Transfer-Encoding"]} { HTTP::payload rechunk }
}We have a requirement for rate limiting traffic to "/oab" using souce ip/network addresses. I have created an object list containing the subnets i want rate limited, but i am not able to figure out how i can include it in my existing irule above.
I am not looking for an exact answer eventhough it wont hurt, but more importantly i looking for a sense of direction.
Thankyou!