Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Joanna_41630's avatar
Joanna_41630
Icon for Nimbostratus rankNimbostratus
Nov 06, 2009

Creating iRule for to select ssl profile to use.

Hello, I have a situation where I have one virtual server listening on port 443, depending on the URI the vs will send it to one of two pools. The site abc.com/xyz will be sent to xyz_pool which liste...
application delivery
dev
devops
irules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Nov 08, 2009
Can you elaborate on why you're trying to disable SSL on the clientside? The SSL handshake would have already been completed by the time you parse the URI and run SSL::disable clientside. When you say port 8177 is a mixture of HTTP and HTTPS, are you saying the server will accept SSL and cleartext requests? That would be a bit atypical.

Also, to check for two URI's, you can use 'if {[HTTP::uri starts_with "/xyz"] or [HTTP::uri] starts_with "/lmn"]}' or for more efficiency, you could use switch: 

  
  when HTTP_REQUEST {  
    
      Check requested URI  
     switch -glob [HTTP::uri] {  
        "/xyz*" -  
        "/lmn*" {  
            URI started with /xyz or /lmn  
        }  
        default {  
            URI didn't start with /xyz or /lmn  
        }  
     }  
  }

Aaron