Have any one luck with F5 and ArcGIS server 9.3.1. How can F5 understand that a service in ArcGIS server is not available (There will be always a response if service is not available).
F5 Never knows about the services as it actually deals with SOM not with SOC, it needs a spatial confguration in F5 to do so. I am not sure how in F5 you can do but I know you can do it.
I think, F5 can send frequent probe requests to the service URL, and the response will indicate if the service is up (returning 200) or is down/not available (returning 404) .
You can configure a custom health monitor to the pool. If this is a web server, you will want to use an HTTP or HTTPS health monitor, but there are also TCP, UDP, SIP, scripts and many other kinds of health monitors.
Related
I recently began using Fiddler to capture requests from a windows application that I believe is sending malevolent requests. This said application actually has a browser extension for both Chrome and Microsoft Edge. However, only on the Windows Application does Fiddler gives me a yellow pop up: "The System proxy was changed, click to reenable Fiddler capture." This happens specifically when the App begins running and the user logs in.
An example is seen on here: Fiddler not capturing traffic. Proxy settings keep getting changed
I also notice in my windows machine network proxy settings that the App automatically checks "use a setup script" and provides a link to their proxy script.
On my machine, I clearly still am seeing many requests after clicking the yellow pop up. I also am still seeing many requests called by this App. However, I am worried that there could be an instance where the App is clearly able to send requests that it can hide from Fiddler, and only let Fiddler see the requests it wants it to.
The reason I believe this is that Fiddler is a proxy, and the App is yet another proxy. Fiddler doesn't know that it's intercepting a network's traffic through the App's proxy. So Fiddler wouldn't know if it's not hearing everything, and neither would I.
Is this a realistic fear?
If so, where can I find some more information on what is happening, and how to bypass it?
If not, that's all I need to know.
I am using SSE to push notification to client. The articture for my dataservices is as follows:
Client -> API Gateway(Spring cloud api gateway) -> f5(loadBalancer) -> (nginx) ->dataservice
When the load balancer is out of the picture, my notification works perfect but when I introduce f5 load balancer, it does not work and connection breaks.
Does f5 load balancer support long lived http connection? What configuration should I do to make it work.
Your question is unclear if it doesn't work at all, or if it stops working after a while (and then how long ?)
I suppose your F5 VS (Virtual Server) is of type Standard.
First, we can check if the HTTP Profile is in any way guilty. If your Virtual Server type is Standard virtual server with Layer 7 functionality, change it if possible to Standard by removing the HTTP Profile (and maybe some other profiles, such as caching..). You also can try Performance Layer4 type. Is it solving the issue ? If yes, we need to identify where the problem is, probably in the HTTP Profile or in a timeout setting as described below.
Check the HTTP Profile configured for your VS, at the Response Chunking option and set it to Preserve. See LTM HTTP Profile Option: Response Chunking if you need more details.
Check both Server and Client TCP Profiles related to your VS, their Time Wait option should be Indefinite if you suspect a timeout issue. There are other ways to solve a timeout, I'm just giving one of them. See K70025261 if you need more details.
As you're running SSE, you should probably disable Delayed Acks (enabled by default) and Nagle's Algorithm (disabled by default), as they can make your notifications slower. They're also both at the TCP Profile screen.
To answer the question:
YES, F5 supports SSE as I was able to make it work with some configuration tweeks. I cannot paste the configuration snapshot here, but in summary, turning off the **HTTP compression** property seemed to have done the trick for my case.
I have a requirements to record all incoming and outgoing traffic to my application loadbalancer. I have a tool from F5 (install in EC2) to receive the traffic and process and perform actions (So I can setup ELB+ASG for this). However I want the traffic should go to the web server (Apache+PHP), so that my application also will work well.
I know GuardDuty and VPC flow logs are some alternate. But there are some limitation (It didn't capture all events comes to EC2 instance). Hence I need to rely some third party tools such as F5, checkpoint.
Regards
Senthil
I'm running a local web server written in Go and I can debug traffic going to it from my browser; but, I can't see the http request that it makes to external services.
Do I have to run some particular configuration of the web server in order to get the traffic to appear in fiddler? It is running as a background process.
Short answer: you can't...
...unless your web application is written to open a connection to a Proxy server and route requests through that connection (e.g. connect to a remote proxy, and then send requests through it).
Typically what developers do is just dump the Web Request/Response to a debug file to inspect during development (or to debug on a live server, by enabling it with a flag at runtime).
Fiddler is a "proxy" service/server. When you are using it normally to debug browser requests, your Browser is configured to connect to a Proxy server. That is, it will send all web requests through your fiddler's local server (I think it's localhost:8888 if i remember from my Windows days of using Fiddler) which in turn makes a connection to your local web server that you are debugging.
You can read more about Proxies at Wikipedia.
In that picture above, your local web server would be Alice. Meaning, Alice would need to be configured to connect to a proxy server and then make web requests through it.
EDIT:
(for the "I really need this" crowd)
If you really want to modify your web server to send requests through a proxy, there are a few Go packages already written to help you. GoProxy is one such package.
I want to write a general solution to relay data that comes from different application protocols to a proxy (socks and or/http) in order to do web filtering. Are there any open source projects for windows that do that ?
Check out cntlm. Here's the link:
http://cntlm.sourceforge.net/
It's main selling point is that it does NTLM authentication, but it also works well as a general-purpose proxy. It also has a gateway mode that allows it to proxy network traffic to another proxy server.