DataScript: Execution Priority

Introduction

Many DataScript capabilities can be performed via policies or standard features. It is important to understand the order of precedence, as the execution priority will dictate the order that various features, policies, and DataScripts will occur.  For instance, if a policy decides to discard a connection while a DataScript decides to redirect the client, the order of execution is critical to ensuring the intended behavior occurs.

Responses generated by DataScripts or policies (as opposed to responses generated by a server) are not evaluated by DataScripts.  For instance, an HTTP response generated by the HTTP Request Policy cannot be inspected or modified by a DataScript.

More than one DataScript may be applied to a single virtual service. The order of the DataScripts is important, as DataScripts with the same event will be executed in the order established. When adding DataScripts via the UI, use the up and down arrows next to the DataScript to reorder. The DataScript at the top of the list will execute first.

Client Request to Server

Avi Vantage processes client-to-back-end-server traffic in the following order of precedence.

Note: Individual features may be inserted at different points based on the feature’s functionality. For example, even though connection throttling is defined as part of an HTTP application profile, if turned on, connection throttling would occur during step 8 of the client request, not step 5.

HTTP Header Processing

  1. SSL
  2. Rate Limiting DDOS
  3. WAF
  4. DataScript Auth Event
  5. Client Authentication and Authorization
  6. Security Policy
  7. Request Policy
  8. HTTP Application Profile Attributes
  9. DataScript
  10. Caching
  11. Server Selection & Persistence
  12. Request Queuing
  13. Connection Switching/ Connection Multiplexing
  14. Server SSL

HTTP Body Processing

  1. SSL
  2. WAF
  3. DataScript
  4. Server SSL

HTTP Request Processing

  1. SSL
  2. Rate Limiting DDOS
  3. WAF
  4. DataScript Auth Event
  5. Client Authentication and Authorization
  6. Security Policy
  7. Request Policy
  8. HTTP Application Profile Attributes
  9. DataScript
  10. Caching
  11. Server Selection & Persistence
  12. Request Queuing
  13. Connection Switching/ Connection Multiplexing
  14. Server SSL

HTTP Body Processing

  1. SSL/TLS
  2. WAF
  3. DataScript
  4. SSL/TLS re-encryption

Server Response to Client

Avi Vantage processes back-end-server-to-client traffic in the following order of precedence:

  1. SSL
  2. Cache to Client
  3. Compression
  4. Content Rewrite
  5. DataScript
  6. WAF
  7. Cache from Server
  8. Server SSL

Multiple DataScripts

More than one DataScript may be applied to a single virtual service.  The order of the DataScripts is important, as DataScripts with the same event will be executed in the order set. When adding DataScripts via the UI, use the up and down arrows next to the DataScript to reorder.  The DataScript at the top of the list will execute first.

Suggested Reading

Document Revision History

Date Change Summary
December 07, 2020 Updated the HTTP Header Processing and Body Processing(Version 20.1.3)
June 05, 2020 Updated the execution priority