Manual Chapter : Common Elements for Policies Tasks

Applies To:

Show Versions Show Versions

BIG-IP DNS

  • 15.0.0

BIG-IP Analytics

  • 15.0.0

BIG-IP AFM

  • 15.0.0

BIG-IP PEM

  • 15.0.0

BIG-IP ASM

  • 15.0.0

BIG-IP AAM

  • 15.0.0

BIG-IP APM

  • 15.0.0

BIG-IP LTM

  • 15.0.0
Manual Chapter

Common Elements for Policies Tasks

  1. On the Main tab, click
    Local Traffic
    Policies
    Policy List
    .
    The Policy List Page screen opens.
  2. On the Main tab, click
    Local Traffic
    Policies
    Strategy List
    .
    The Strategy List screen opens.
  3. Click
    Add
    .
    The New Rule screen opens.
  4. Click
    Create
    .
    The New Policy screen opens.
  5. Click
    Clone
    .
    The
    Policy Name
    field becomes cleared.
  6. Click
    Create Policy
    .
    The Draft Policy screen opens.
  7. Click
    Save Draft
    .
    The Policy List Page screen opens.
  8. Click
    Create
    .
    The New Strategy screen opens.
  9. Click
    Delete
    .
    The Confirm delete? popup screen opens.
  10. Click
    Delete
    .
  11. Click
    Create Policy
    .
    The policy is created and the Rules area appears.
  12. Click
    Save
    .
  13. Click
    Finished
    .
  14. Click
    Update Rule
    .
  15. Click
    Update
    .
  16. Click
    Publish
    .
    The draft policy is removed from the Draft Policies list, and the modified published policy appears in the Published Policies list.
  17. Click the name of a policy.
  18. Click the name of a draft policy.
  19. Click the name of the draft policy.
  20. Click the name of a published policy.
  21. Click
    Create Draft
    .
    A draft policy of the same name appears in the Draft Policies list.
    When you publish a policy, the draft policy is removed from the Draft Policies list.
  22. Do one of the following steps.
    Step
    Description
    Click
    Create Draft
    . A draft policy of the same name appears in the Draft Policies list.
    If a draft policy of the same name as the published policy does not exist, you can click
    Create Draft
    to create a draft version with the same name as the published policy.
    When you publish a policy, the draft policy is removed from the Draft Policies list.
    Click
    Clone
    , type a unique name for the policy in the
    Policy Name
    field, and click
    Create Policy
    . A draft policy is created.
    You can click
    Clone
    to create a different draft policy that uses the same settings as the published policy.
  23. Modify the applicable settings.
  24. Select the check box of the draft policy to publish.
  25. Click and drag the rule or rules that you want to reorder into the preferred sequence.
  26. Select the check box for the draft policy that you modified.
  27. Click the name of a policy.
    In this example, click
    CacheExpire
    .
  28. From the Draft Policies list of policies, select the
    CacheExpire
    check box.
  29. In the
    Name
    field, type a unique name for the policy.
  30. In the
    Policy Name
    field, type a unique name for the policy.
  31. In the
    Policy Name
    field, type a unique name for the policy.
    For this example, type
    CacheExpire
    .
  32. In the
    Description
    field, type a description for the policy.
  33. From the
    Strategy
    list, select a matching strategy.
  34. From the
    Strategy
    list, select
    First
    for the matching strategy.
  35. For the
    Requires
    setting, select a protocol entry from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  36. For the
    Requires
    setting, select
    http
    from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  37. For the
    Requires
    setting, perform the following steps, as necessary.
    1. Select a protocol entry from the
      Available
      list, and move the entry to the
      Selected
      list using the Move button.
    2. Select a protocol entry from the
      Selected
      list, and move the entry to the
      Available
      list using the Move button.
  38. For the
    Controls
    setting, select a functional area or module from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  39. For the
    Controls
    setting, select
    acceleration
    from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  40. For the
    Controls
    setting, perform the following steps, as necessary.
    1. Select a functional area or module in the
      Available
      list, and move the entry to the
      Selected
      list using the Move button.
    2. Select a functional area or module from the
      Selected
      list, and move the entry to the
      Available
      list using the Move button.
  41. Using the
    Conditions
    setting, configure the applicable options.
    1. From the
      Operand
      list, select an operand.
    2. From the
      Event
      list, select an event.
    3. From the
      Selector
      list, select the applicable setting.
    4. Select the
      Negate
      check box to reverse the policy conditions.
    5. From the
      Condition
      list, select a condition.
    6. Select the
      case sensitive
      check box to apply case sensitivity to the condition.
    7. In the
      Values
      field, type the text that applies to the condition and click
      Add
      .
      The condition text value appears in the
      Values
      list box.
    8. To the left, near the
      Missing
      setting, click
      Add
      .
      The configured condition appears in the
      Conditions
      list.
  42. Using the
    Conditions
    settings, select a listed condition, and modify the applicable options.
    1. From the
      Conditions
      list, select a condition, and click
      Edit Condition
      .
    2. From the
      Operand
      list, select an operand.
    3. From the
      Event
      list, select an event.
    4. From the
      Selector
      list, select the applicable setting.
    5. Select or clear the
      Negate
      check box to apply or remove negating.
    6. From the
      Condition
      list, select a condition.
    7. Select or clear the
      case sensitive
      check box to apply or remove case sensitivity to the condition.
    8. In the
      Value
      field, type the text that applies to the condition, and click
      Add
      .
      The condition text value appears in the
      Values
      list box.
    9. Below, and to the left of the
      Values
      list box, click
      Add
      .
      The modified condition appears in the
      Conditions
      list.
  43. Using the Rules controls, configure a Content-Type rule.
    1. In the Rules area, click
      Create
      .
    2. In the
      Name
      field, type
      Content-Type
      for the rule.
    3. In the
      Description
      field, type a description for the rule.
    4. In the Match all of the following conditions area, click
      +
      .
      A list of types of conditions and associated controls appears.
    5. From the types of conditions list, select
      HTTP Header
      .
    6. In the
      Named
      field, type
      expire_content_timeout
      .
    7. From the matching option list, select
      begins with
      .
    8. In the
      any of
      field, type
      $Expires_ciname
      and click
      Add
      .
    9. In the Do the following when the traffic is matched area, click
      +
      .
      A list of types of actions and associated controls appears.
    10. From the types of actions list, select
      Set variable
      .
    11. In the
      named
      field, type
      expire_content_timeout
      .
    12. In the
      equal to
      field, type
      class match -value [string tolower [HTTP::header Content-Type]]
      and click
      Done
      .
    13. From the
      request
      list, select
      response
      .
    14. Click
      Save
      .
      The Rules list appears with the new rule.
  44. Using the Rules controls, configure a Cache-Control rule.
    1. In the Rules area, click
      Create
      .
    2. In the
      Name
      field, type
      Content-Type
      for the rule.
    3. In the
      Description
      field, type a description for the rule.
    4. In the Match all of the following conditions area, click
      +
      .
      A list of types of conditions and associated controls appears.
    5. From the types of conditions list, select
      Cache-Control
      .
    6. In the
      Named
      field, type
      expire_content_timeout
      .
    7. From the matching option list, select
      is
      .
    8. In the
      any of
      field, type
      max-age
      and click
      Add
      .
    9. In the Do the following when the traffic is matched area, click
      +
      .
      A list of types of actions and associated controls appears.
    10. From the types of actions list, select
      Replace
      .
      The
      http header
      list appears.
    11. In the
      named
      field, type
      Cache-Control
      .
    12. In the
      with value
      field, type
      max-age=$expire_content_timeout, public
      and click
      Done
      .
    13. From the
      request
      list, select
      response
      .
    14. Click
      Save
      .
      The Rules list appears with the new rule.
  45. Using the
    Actions
    setting, configure the applicable options.
    1. From the
      Target
      list, select a target.
    2. From the
      Event
      list, select an event.
    3. From the
      Action
      list, select an action.
    4. From the
      Parameters
      list, select a type of parameter to apply.
    5. In the
      Parameters
      field, type the text that applies to the type of parameter and click
      Add
      .
      The configured parameter appears in the
      Parameters
      list box.
    6. At the lower left, click
      Add
      .
      The configured settings for the action appear in the
      Actions
      list.
  46. Using the
    Actions
    settings, select a listed action, and modify the applicable options.
    1. From the
      Actions
      list, select an action and click
      Edit
      .
    2. From the
      Target
      list, select a target.
    3. From the
      Event
      list, select an event.
    4. From the
      Action
      list, select an action.
    5. From the
      Parameters
      list, select a type of parameter to apply.
    6. In the
      Parameters
      field, type the text that applies to the type of parameter and click
      Add
      .
      The modified parameter appears in the
      Parameters
      list box.
    7. Below, and to the left of the
      Parameters
      list box, click
      Add
      .
      The modified settings for the action appear in the
      Actions
      list.
  47. Select the check box for each policy that you want to delete.
  48. In the Rules area, click
    Create
    .
  49. In the
    Rule
    field, type a unique name for the rule.
  50. Click the name of a rule.
  51. In the Match all of the following conditions area, click
    +
    .
  52. From the
    Client SSL
    list, select a condition type, and configure the applicable settings and available options.
  53. In the Match all of the following conditions area, click
    +
    to add an additional condition, as necessary, and configure the applicable settings and available options.
  54. In the Do the following when the traffic is matched area, click
    +
    .
  55. From the
    Enable
    list, select an action type, and configure the applicable settings and available options.
  56. In the Do the following when the traffic is matched area, click
    +
    to add an additional action, as necessary, and configure the applicable settings and available options.
  57. From the
    Operand
    list, select an operand.
  58. From the
    Operands
    list, select an operand, configure the applicable settings, and click
    Add
    .
  59. From the
    Operand
    list, select
    http-basic-auth
    .
  60. From the
    Operand
    list, select
    http-header
    .
  61. From the
    Operand
    list, select the
    http-header
    operand for the rule, configure the applicable settings, and click
    Add
    .
  62. From the
    Operand
    list, select
    http-host
    .
  63. From the
    Operand
    list, select the
    http-host
    operand for the rule, configure the applicable settings, and click
    Add
    .
  64. From the
    Operand
    list, select
    http-method
    .
  65. From the
    Operand
    list, select
    http-referer
    .
  66. From the
    Operand
    list, select
    http-status
    .
  67. From the
    Operand
    list, select
    http-uri
    .
  68. From the
    Operand
    list, select the
    http-uri
    operand for the rule, configure the applicable settings, and click
    Add
    .
  69. From the
    Operand
    list, select
    http-version
    .
  70. From the
    Selector
    list, select an entry and configure the applicable settings.
  71. From the
    Selector
    list, select
    all
    .
  72. From the
    Selector
    list, select
    domain
    .
  73. From the
    Selector
    list, select
    expiry
    .
  74. From the
    Selector
    list, select
    host
    .
  75. From the
    Selector
    list, select
    password
    .
  76. From the
    Selector
    list, select
    path
    .
  77. From the
    Selector
    list, select
    path-segment
    .
  78. From the
    Selector
    list, select
    port
    .
  79. From the
    Selector
    list, select
    query-parameter
    .
  80. From the
    Selector
    list, select
    query-string
    .
  81. From the
    Selector
    list, select
    scheme
    .
  82. From the
    Selector
    list, select
    unnamed-query-parameter
    .
  83. From the
    Selector
    list, select
    username
    .
  84. From the
    Selector
    list, select
    value
    .
  85. From the
    Selector
    list, select
    version
    .
  86. In the
    Name
    field, type a unique name for the strategy.
  87. Click the name of a strategy.
  88. From the
    Type
    list, select a strategy type.
    Strategy type
    Description
    Configuration steps
    best-match
    Selects and executes the actions of the rule in the Rules list with the best match, as determined by the following factors.
    • The number of conditions and operands that match the rule.
    • The length of the matched value for the rule.
    • The priority of the operands for the rule.
    In a best-match strategy, when multiple rules match and specify an action, conflicting or otherwise, only the action of the best-match rule is executed. A best-match rule can be the lowest ordinal, the highest priority, or the first rule that matches in the Rules list.
    1. From the
      Operand
      list, select an operand.
    2. From the
      Event
      list, select an event type.
    3. From the
      Selector
      list, select a type of selector.
    4. Click
      Add
      .
  89. Select the check box for each policy matching strategy that you want to delete.
  90. For the
    Requires
    setting, select
    http
    from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  91. For the
    Controls
    setting, select
    forwarding
    from the
    Available
    list, and move the entry to the
    Selected
    list using the Move button.
  92. Using the options for the
    Conditions
    setting, configure a rule where the condition equals the criteria specified:
    1. From the
      Condition
      list, select
      equals
      .
    2. Select the
      case sensitive
      check box to apply case sensitivity to the condition.
    3. In the
      Values
      field, type the text for the applicable value and click
      Add
      .
      An example of a value is
      siterequest.com
      .
      The specified condition appears in the
      Values
      list box.
    4. At the lower left, click
      Add
      .
      The configured condition appears in the
      Conditions
      list.
  93. Using the options for the
    Conditions
    setting, configure a rule where the condition starts with the criteria specified:
    1. From the
      Condition
      list, select
      starts with
      .
    2. Select the
      case sensitive
      check box to apply case sensitivity to the condition.
    3. In the
      Values
      field, type the text for the applicable value and click
      Add
      .
      An example of a value is
      /app1/
      .
      The specified condition appears in the
      Values
      list box.
    4. At the lower left click
      Add
      .
      The configured condition appears in the
      Condition
      list.
  94. Using the
    Actions
    setting, configure the applicable options:
    1. From the
      Target
      list, select
      forward
      .
    2. From the
      Event
      list, select an event.
    3. From the
      Action
      list, select
      pool
      .
    4. From the
      Parameters
      list, select the pool name to which you want the BIG-IP system to forward the traffic.
    5. To the right of the input field, click
      Add
      .
      The configured parameter appears in the
      Parameters
      list box.
    6. At the lower left click
      Add
      .
      The configured settings for the action appear in the
      Actions
      list.