Is it possible to switch the TCP , HTTP compression and web acceleration profile using an irule

Question

All,
   I am trying to address an issue for users in India accessing USA based systems using a thick client which are being impacted by the latency (approx 250-300ms). I have a virtual server with a HTTP profile using the default TCP profile, performing SSL offloading and load balancing.&nbsp;
To be able to test I have been asked to switch the TCP/HTTP compression and web acceleration profile for just a handful of users based on their IP address (i.e. using an irule  to match the client IP and then enable different profiles)&nbsp;
I have seen older posts stating it is not possible to switch the TCP profile using an irule but thought I would see if anyone is aware if it is now possible, or any other thoughts on a different approach to use if not.&nbsp;
thanks in advance&nbsp;

leonardo_souza · Answer

I can see that is possible to disable the compression, but does not look like is possible to change TCP or acceleration profiles.&nbsp;
A simple workaround that should work, is to direct the traffic to another virtual server, and that virtual server would have the new settings you want.&nbsp;
https://devcentral.f5.com/wiki/irules.virtual.ashx&nbsp;
You need to test.
Not sure if the TCP profile will change, try in early events in the iRule.&nbsp;
Also, about the decision when to use the new virtual server, just use a datagroup with the IPs/networks.&nbsp;

hannes_rapp_162 · Answer

You can change the HTTP Compression and Webacceleraration profile by using a LTM Local Traffic Policy. In regards to modifying the TCP profile, I think you're out of luck.&nbsp;
But what you can do is create a second Virtual Server which has the exact settings you want for your Indian-based customers (second public DNS needed). What you can then do is issue a HTTP redirect from the main Virtual Server/Service to that Indian-specific Virtual Server/Service based on customer's GeoLocation (using an iRule).&nbsp;
The initial TCP handshake, SSL handshake and L7 HTTP request will still use the settings from your main Virtual Server, but any consequent requests can benefit from your optimized profiles.Over time, your Indian-based customers will refrain from using the main DNS as they are aware of the existence of your second DNS name dedicated for their region.

hannes_rapp · Answer

You can change the HTTP Compression and Webacceleraration profile by using a LTM Local Traffic Policy. In regards to modifying the TCP profile, I think you're out of luck.&nbsp;
But what you can do is create a second Virtual Server which has the exact settings you want for your Indian-based customers (second public DNS needed). What you can then do is issue a HTTP redirect from the main Virtual Server/Service to that Indian-specific Virtual Server/Service based on customer's GeoLocation (using an iRule).&nbsp;
The initial TCP handshake, SSL handshake and L7 HTTP request will still use the settings from your main Virtual Server, but any consequent requests can benefit from your optimized profiles.Over time, your Indian-based customers will refrain from using the main DNS as they are aware of the existence of your second DNS name dedicated for their region.

hannes_rapp · Answer

If you're aiming to just test the benefits of your optimized profiles first, create a second Virtual Server with the same target IP address, but take advantage of the Source IP Address field (closest-match source-IP VIP will get the connection). If you know from which IP address the test connections will be coming from, your test scenario will be very straight forward and there's no need to use any iRules.

hannes_rapp_162 · Answer

If you're aiming to just test the benefits of your optimized profiles first, create a second Virtual Server with the same target IP address, but take advantage of the Source IP Address field (closest-match source-IP VIP will get the connection). If you know from which IP address the test connections will be coming from, your test scenario will be very straight forward and there's no need to use any iRules.

Forum Discussion

Is it possible to switch the TCP , HTTP compression and web acceleration profile using an irule

6 Replies

Recent Discussions

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Related Content

F5 Fast L4 Acceleration and the F5 Smart Coprocessor (prioritized Fast L4 Acceleration)

Application Acceleration: To Compress or Not Compress

Accelerating Digital Transformation in Banking and Financial Services

fastl4 vs full-acceleration

Using F5 Application Security and DoS Solutions with AWS Global Accelerator Part 1