Can Big-IP Handle Outside Site redirects transparently to client

Is there a way to modify the HTTP request to make my virtual server the client?

An HTTP redirect is simply a RESPONSE message type, with a 30x status code (301, 302, etc.), and a "Location" header that tells the client browser to go somewhere else. Example:

HTTP/1.0 302 Found
Location: http://www.somewhere.else.com

In order for the VIP to be the client, you have a few options:

1. Load balance the traffic to a pool or node. The BIG-IP isn't technically "the client", but because it's a full proxy, the connection is at least discreet. The real client is still in control of making the requests.

    

2. A sideband call. This is where the BIG-IP is truly the client. A sideband call is a "blocking" request mechanism used in iRules to send data out somewhere, get a response, and then finish processing the configured request (send to pool). In this case the VIP/iRule is in charge of making the request, so anything you need from the client (user/pass), you need to get beforehand. You also won't expect the client to see the responses from the remote site (ie. a logon page).

    

3. If we're JUST talking about a remote logon page, you can also use Access Policy Manager (APM) module to either a) call the remote logon page for you, or b) SSO to the remote logon page.