HSL iRule broken after the move from 11.4 to 11.6
Here's the basic iRule. We're using to record client ip addresses for ldap requests in a snatted environment. Working without issue in 11.4. Failing entirely in 11.6. Any help is immensely appreciated.
when CLIENT_ACCEPTED { set hsl [HSL::open -proto UDP -pool /Common/syslog-pool] }
when SERVER_CONNECTED { set FrontEnd "[IP::client_addr]:[TCP::client_port] <-> [clientside {IP::local_addr}]:[clientside {TCP::local_port}]" set BackEnd "[IP::local_addr]:[TCP::local_port] <-> [serverside {IP::remote_addr}]:[TCP::server_port]" Log connection details as local7.info; see RFC 3164 Section 4.1.1 - "PRI Part" for more info HSL::send $hsl "<190> LDAP HSL: $FrontEnd | $BackEnd" test by logging locally log local0. "$FrontEnd $BackEnd" }
Notes: 1. iRule will correctly write to the local logs if I uncomment that functionality. Changing from an HSL pool to an HSL publisher makes no difference in lack of functionality.
-
The vip using the iRule exists in a different partition than /Common, but replicating the pool, iRule and/or the publisher in the other partition makes no difference in lack of functionality.
-
$hsl resolves to "MDS:/Common/syslog-pool:UDP"