Geeks With Blogs
Nicholas Zurfluh blog

Bad news, the LDAP browser opens a connection to the the server prior to sending commands.  This nails up a TCP connection, at this point all load balancing decisions are over.  Any intervention by Big-IP will break the IP session.  If the Vingette servers work similarly, then a rule will not work.  Also as a side note the LDAP browser reveals a potential security exploit, given that there is an apparent long-lived TCP connection.

I must consult RFCs 1777 and 2251

Posted on Thursday, September 9, 2004 5:05 PM F5 networks | Back to top

Comments on this post: iRule that identifies LDAP v.2 read and write requests Contd...

No comments posted yet.
Your comment:
 (will show your gravatar)

Copyright © Nicholas Zurfluh | Powered by: