TCP monitor with sending a byte sequence

Question

One of our customers is using a TCP/IP based application and instead of using the default TCP monitor, they will check their application with sending a specific byte sequence after the TCP connect. If the server answers then with the same byte sequence it can be treated as healthy.&nbsp;
From a C sample code the byte sequence is defined like this:&nbsp;

private static readonly byte[] _ByteSequence = new byte[] { 62, 122, 33, 83, 70, 46, 14, 74, 164, 167, 81, 253, 54, 254, 113, 78, 128, 0, 101, 99, 104, 111, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 4, 0, 0, 0, 112, 105, 110, 103, 255, 255, 255, 255 };&nbsp;

But currently I have totally no clue how I can handle this with (I guess) and external monitor.&nbsp;
Did someone realized something similar or has an idea how the script should look like?&nbsp;
Thank you!&nbsp;
Ciao Stefan :)&nbsp;

0x0ff_info_1420 · Accepted Answer

Why do you use -l parameter ? It's mean listen so, your commands wait for connexion and send your binary payload.&nbsp;
The nc error message tell you that you can't listen on an interface you don't own. Till now, I didn't know we could specify the address. :p&nbsp;
But what you do there is not what I wanted to explain to you in my first post. I told you (but not clearly, i admit :p) that you could use regular TCP monitor in TMSH or GUI. In the field Send String and in the field Receive String you can actually use the escaped string. ;) More simple than with the nc script no ?&nbsp;

kevin_stewart · Answer

Here's a thought: use an external monitor with netcat and xxd. Here's an example:
echo '47455d782...hex data...0a0d0a' | xxd -r -p | nc 10.70.0.1 80

Take a look at the sample_monitor Bash script under /config/monitors and you should get an idea on how to deploy the above.

0x0ff_info_1420 · Answer

You could use an escaped string with hexcode like this : \x3e\x7a\x21...\xff\xff
It's works in Send and Receive strings, dono if it's a feature but it's quite convenient ! :)&nbsp;

stefan_klotz · Answer

Hi 0x0ff.info,&nbsp;
I just prepared something like this after some additional research, but currently I have to wait until the FW-request is implemented to get access from the LB to the server. I'll let you know, once I can start with my testing.&nbsp;
Thank you!&nbsp;
Ciao Stefan :)&nbsp;

stefan_klotz · Answer

Hi again,
I'm now able to perform some testing, but fighting with below error:
nc: Cannot assign requested address

I tried these two commands, which both ends up with the same error:
echo -ne "\x3e\x7a\x21\x53\x46\x2e\x0e\x4a\xa4\xa7\x51\xfd\x36\xfe\x71\x4e\x80\x00\x65\x63\x68\x6f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x04\x00\x00\x00\x70\x69\x6e\x67\xff\xff\xff\xff" | nc -l 2620:0000:0C10:F501:0000:0002:0AFD:61AB 55555

and
echo "3e7a2153462e0e4aa4a751fd36fe714e80006563686f0000000000000000000000000000000000000400000070696e67ffffffff" | xxd -r -p | nc -l 2620:0000:0C10:F501:0000:0002:0AFD:61AB 55555

The IPv6-address is being used, because we have route domains in place.
Any idea, what I'm doing wrong?
Thank you!
Ciao Stefan 🙂

stefan_klotz · Answer

You're my hero of the day ;)&nbsp;
It's fantastic that it's working so easy. The monitor becomes green directly, then I changed one character in the Receive String and it went red. So it seems to work perfectly fine.&nbsp;
Thank you!!!&nbsp;
Ciao Stefan :)&nbsp;

Forum Discussion

TCP monitor with sending a byte sequence

9 Replies

Recent Discussions

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Related Content

TCP Internals: 3-way Handshake and Sequence Numbers Explained

Convert curl command to BIG-IP Monitor Send String

create monitor with ? in the send string via TMSH

The TCP Send Buffer, In-Depth

Health monitor question