-
Peplink BPL-710 Link Load Balancing
Do Peplink BPL-710 able to convert to A10 Networks ?
-
AXAPI v3.0: Upload ssl-cert and ssl-key
Hi everyone, I hope someone has played around with the new API and tried to upload a ssl certificate and key. I used the following Post request via self-written perl code:POST https://test-lb1a.boreus.de/axapi/v3/file/ssl-certAuthorization: A10 e12409be89bd30926fceea3c52d6c3Content-Length: 2777Content-Type:…
-
traffic-replication
I'm trying to set up a slb virtual-server that will receive syslog messages, and forward one copy to any member from a pool, and forward a second copy to a specific server that is not part of the pool. My pooled servers all replicate on the backend, so I only need to send one copy to it, but that server only retains about…
-
aflex ip based traffic management
Hi, i'm having a problem with some (basic) aflex traffic redirection on a virtual server that I'm trying to use. I'm trying to match certain subnet ranges of users to a prioritised server pool (sg2-80), but to not prevent them from connectivity if that prioritised pool goes down for some reason, and send the majority of…
-
a10sdk-python - Adding members to a Service Group
Hello, I'm trying to add members to a Service Group using the a10sdk-python modules but can't get it to work. Here's my code:from a10sdk.core.slb.slb_server import Server
from a10sdk.core.slb.slb_server_port import Port
from a10sdk.core.slb.slb_service_group_member import Member def…
-
A10 persist source-ip with x-forwarded-for
Need to support persistent connection based on client IP behind a proxy: Clients[s] -> AccessProxy -> network -> A10 -> Servers[s] This implies that A10 needs to do persist source-ip based on the x-forwarded-for provided by the upstream AccessProxy for each client. In past without an AccessProxy in path we had used the…
-
Cannot get a simple URI redirect working
Hi all, I've been searching through examples on here, the alfex github, the samples on the ACOS device, but just cannot get a simple redirect working with AFlex. Can somebody please point me in the right direction? I'm trying to do the following The user visits https://hostname.domain.com and the ACOS device redirects them…
-
Detect HTTPS traffic
Hi, I'm after a variable that can differentiate httpS traffic from http traffic. Is this possible with http::host or http::uri? Thanks, William
-
Cacti Template A10
Hi support, Please, someboy can you help me about create graph cacti for to view current connections for each virtual server: I can do graph with whole snmp query but only can view first one query, the others query doesn´t can view on the graph. For example:…
-
External Monitor Script
Hi, I have a developed bash script that I need to be able to "convert" to an A10 external monitor script. The script is `#!/bin/bash TOKEN=curl -s -k https://<name of server>/icoauth/oauth2/token -d 'grant_type=client_credentials&client_id=as-client&client_secret=<secret key>&principal_attribute_extRef=exr999999'…
-
SLB SCCM
Hello Guys: Does anyone in here has use case or has an experience to setup an Server load balancing for Microsoft System Center Configuration Manager(SCCM)application server? Any feedback is highly appreciated. Cheers, netcrawler
-
GSLB across AX3000 and TH3030S cluster
I have new hardware in a new data center. The AX3000-11 runs 2.7.x while the TH3030S will be running 4.1.0. Is GLSB able to work when the two clusters are on different (yet current) firmware?
-
Proxy_pass
Hello, We need to redirect a HTTPS url to an external url. The customer only needs to see the original url. What is the best way to do this? Can we use Aflex for this or do we need to use the proxy feature?. Example: https://www.originalweb.com -> https://redirectweb.com They now use <VirtualHost *:443> ServerName…
-
redirect-rewrite -http template
hi All, Do any one has issues using rewrite redirect option in http template . its pretty simple requirement any request with / need to redirect to /login.jsp rewrite option i used was https://abc.com/ ---- https://abc.com/login.jsp and it never worked any help much appreciated . FYI , im also using the same template to…
-
GLSB A10 inter-Site (Primary and secondary DC)
A10 question We have a cluster of A10 TH930 installed on the same site, and 3 LS internet access. We have configured: SLB for outgoing traffic (load balancing across 3 LS internet access ) GLSB for incoming traffic : for each service (www.one.ma for example) we have created tree VIP SLB, each VIP user a LS public…
-
Multiple protocols on virtual server port
Hello everyone, I need to make one virtual port both to manipulate with TCP stream (TCP::payload replace) and to insert HTTP header. Unfortunately, tcp_proxy port (the only one that can do TCP::payload replace) can't handle HTTP traffic. Any thoughts?
-
A10 Thunder ADC= SSL certificate Issue
Hi, I am facing SSL certificate expiry issue on client browsers. I have created a self signed cert by using A-10 GUI. Certificate expiry date on server side is 2025, but when i install it on client browser like firfox so it show the cert validity only for three month. Secondly on Chrome Cert validity date is same as on…
-
L7 Configuration request
Hello Under with to construct a new with same function, Model: TH3030 version: 2.7.1.GR-P1 L4 composition : one-arm 1. As Reverse Proxy necessary function - HTTP support - Web Sockets support - SSL support for secure communication for HTTP AND WebSockets - Request AND Response Header Management - URL Rewrite Engine - web…
-
SSL CSR with SAN
Hello, We need to create a CSR with both CN and SAN fields filled with the same FQDN, because our SSL provider requires the fields to contain that info. Its not a wildcard, just a simple domain name. How can we do that on TH1030S with 2.7.2-P7-SP3(build: 3) ? Thank you
-
Console port on AX2600
I can't get the console ports on my AX2600 devices working. The standard Cisco pin-out is not working, so I am wondering if they use a special pin-out or something like that.
-
Multiple Server-SSL Template
Hi gurus, I am running A-10 on a cluster of TH1030S with version: 2.7.2-P7-SP3(build: 3) I have one virtual service configured with SNI on outside (Client-SSL Template) to handle multiple https web site on a single ip. Some web site have to be configured to SSL offloading while others have to be configured to "another" SSL…
-
Mib/Oid for Virtual Server In/Out Throughput
Hi everyone What Mib/Oid can use snmpget for Virtual Server In/Out Throughput or Virtual Interface In/Out Throughput? Thank you for any help you can provide.
-
IP::addr and regex
is it possible to check against client IP using regex? basically trying to do an aflex ACL to limit IP's for SMTP connections something similar to this (this isn't working of course) when CLIENT_ACCEPTED { if { not [IP::addr [IP::client_addr] matches regex "^192\.168\.2\.(10[5-7])$"] } { drop } }
-
Certificate expiration mail
Hi, When trying to configure the Certificates expiration mail on our partitions, we get the foloowing error: Access denied: no privilege for this module. We´re using the admin user. If we try it on the shared partition, there is no problem, but we have no certificates there. Thank you
-
Traffic Capture (pcap) on data plane
I'm using the filters and capture tools under diagnostics to try and capture data plane traffic but seem unable to. I can see only "control" traffic in the captures (heartbeats, server checks ...). Is there a way to capture the actual data traffic inside a certain partition?
-
Need deployment guide specific to DNS Proxy using GLSB
deployment guide specific to DNS Proxy using GLSB
-
HTTP 2 HTTP's redirect
All, I am new to A10 ,and have issue while config vip for http where http vip is used for only redirect traffic to https , but vip cannot function without service group i wonder why we need service group when am doing a redirection only . does A10 does'nt work in full proxy mode by default ? For vip to work we need service…
-
GSLB - Authoritative
Does anyone here tried to setup a GSLB Server mode or domain mode?
-
Mixed Content
Hi everyone, I have a problem with my SLB A10 thunder ax 1030S with mixed content on ssl-off loading, behind a10 has a Oracle Weblogic Server. I have several context root applications on the same JVM I make aflex for work it. follow the aflex: when HTTP_REQUEST { switch [string tolower [HTTP::host]] { testeqa.br { if {…
-
Resatrict Management access to Specific IP
Hi, i Need to know how to restrict Management access of device to a specific IP or Network. I have assigned specific Network IP for Management Access, but still device is accessible to from other LAN IPs (i.e Assigned to Internal & External Partition) as well.
