Policy check sequence within a virtual server
Hi All,
my question is around the use of a policy within a virtual server. I have a single virtual server as a front end and I've used a policy to check the URL and forward to several secondary VIPs based on the http host content and that works fine. The front end server requires a default pool and it's around this default server that my question relates. The F5 is running LTM & ASM and it's decrypting and re-encrypting the connections so if I'm using a policy to forward connections to secondary VIPs should I also configure SNAT, One-connect profile, IRules, server side SSL certs and ASM policy on the front end VIP as these will be required for the default pool but I don't want them to be used for any connection destined for a secondary VIP. What is best practise, do you use a default drop pool or is there another 'best practise' way to use the default pool?
thanks in advance.