iRule to disable OneConnect for a list of source IP addresses
I'm trying to resolve an issue with a legacy application that doesn't like OneConnect.
All traffic from the legacy application originates from a know list of source IP addresses, which I'm including in an iRule Data Group called 'Legacy_App'. The current iRule is sending traffic from those source IP addresses to a specific pool called 'pool_Legacy'. The virtual server has an http profile and OneConnect profile with a /32 netmask. All other applications connecting to the virtual server are working fine. I'm only looking for a way to disable OneConnect specifically for traffic coming from the addresses in the Data Group 'Legacy_App'.
This is what the current iRule looks like:
when CLIENT_ACCEPTED {
if {[class match [IP::client_addr] equals Legacy_App]} {
pool pool_Legacy
}
}
I've seen the OneConnect options for iRules:
ONECONNECT::reuse disable
ONECONNECT::detach disable
Will adding one of those work?
Should they be used with the CLIENT_ACCEPTED event?