YoonJoo__Moon_1
Feb 11, 2014Nimbostratus
using websocket via ASM
Hi all.
I'm testing about ASM v11.4.1 and a website using websocket. I wonder ASM can support websocket.
In my test, LTM can support websocket but ASM can't support it. When apply ASM policy to VirtualServer, I can't show websocket part. So I made a iRule, that is below:
when CLIENT_ACCEPTED {
HTTP::enable
}
when HTTP_REQUEST {
if { ([string tolower [HTTP::header value Upgrade]] equals "websocket" ) && ([string tolower [HTTP::header value Connection]] equals "upgrade" ) } {
log local0. "HTTP Disable"
ASM::disable
}
}
In this iRule, when websocket traffic is come, it disable ASM and pass to LTM. But it means, if some web attacks are come through websocket, ASM can't block attacks.
In addition, if i change iRule from ASM::disable to HTTP::disable, page loading is slowed.
Does any solution using with ASM and websocket?