donmon_10187
Oct 14, 2013Nimbostratus
Using iRules to conserve public IP addresses
Hello all,
I've been tasked with coming up with a solution using one public IP address and laod balancing it to multiple pools using iRules and host-headers. Currently, we're doing a one to one NAT. I created a virtual server and used the iRule below, which is using Data Groups. I was able to successfully accomplish this for http but I cannot get https to work. If anyone can provide some input, I'd much appreciate it.
when HTTP_REQUEST {
if { [class match [string tolower [HTTP::host]] equals TestRedirect] } {
set usepool [class match -value [string tolower [HTTP::host]] equals TestRedirect]
pool $usepool
}
}
Here is the Data Group for the http pools.
ltm data-group internal /Common/TestRedirect {
records {
TESTA.net {
data TESTA_80_pool
}
TESTB.org {
data TESTB_80_pool
}
TESTC.com {
data TESTC_80_pool
}
}
type string
}
I was assuming that they wanted it to be seamless rather than present a cert error but you are correct, if you didn't mind the cert error appearing any cert applied to a client SSL profile would work for this.