For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Brendan_Hogan_9's avatar
Brendan_Hogan_9
Icon for Nimbostratus rankNimbostratus
Apr 21, 2006

Cannot get redirect to work

Desired result:   If HTTP_REQUEST is http or https   output = https.   Also, if URI is "/", then append "/ps/signon.html"       The following works as long as request is http and not...
application delivery
dev
devops
iRules
Colin_Walker_12's avatar
Colin_Walker_12
Historic F5 Account
Apr 21, 2006
Well, first of all, to be able to read the path information of an SSL encrypted HTTP request via an iRule, you have to make sure that your BIG-IP is set to terminate SSL for the connection.

Once you have the client SSL profile enabled, then you should be able to read the info as if it were plain text.

That would allow you to make use of a rule such as:


when HTTP_REQUEST {
  if { [HTTP::path] equals "/" } {
    HTTP::redirect "https://[HTTP::host]/ps/signon.html" 
  }
}

This should work regardless of whether the request is HTTP or HTTPS (assuming it is applied to both a port 80 and port 443 virtual for the same IP address), and it will also make sure that if the path is only a slash ("/"), that the request is redirected properly to the signon page.

HTH,

Colin