On Thu, Jan 10, 2013 at 07:28:29AM +0100, Pär Åslund wrote:
> Hello,
>
> Not sure what you mean with F5 not seeing the header. tcpdump on the F5 to
> verify?
>
> Fix it in F5. This iRule should make persistence based on X-Forwarded-For.
>
> when HTTP_REQUEST {
> if {[HTTP::header X-Forwarded-For] != ""}{
> persist uie [HTTP::header X-Forwarded-For] 600
> }
> }
>
> 600 is the persistence in seconds.
>
> Hope this helps.
And BTW, I'm still having a hard time understanding why would anyone
persist on the source IP address when we know who unreliable it is.
Why not have either haproxy or the F5 insert a persistence cookie as
everyone does ?
Willy
