Forum Discussion
Joel_41531
Nimbostratus
May 27, 2009Blocking insecure log-in page
We terminate https on the F5, and pass traffic to the web apps on port 80. Consequently, I have an interesting problem. I have a log-in page (/store/user/login.jhtml) that should only be accessed via ...
L4L7_53191
Nimbostratus
Jan 24, 2011Addendum: Sorry, I missed something. In looking at what you're trying to accomplish, I think you may be better off with SNMP polling against the appropriate OIDs - the graph data will give you VIP-level SSL TPS ; instead, it's more system-level.
-Matt
- Guido_Vosmeer_9Jun 25, 2008Historic F5 AccountLet me correct myself, I thought the rule would look like that, but since it seems that the SSL::profile is not a valid command for the HTTP_Request event, I need to find another way to do it. Any suggestions?
- spark_86682Jun 27, 2008Historic F5 AccountI'm not 100% sure, but I don't think that there is a way to do this. The SSL::profile command is only valid in CLIENT_ACCEPTED (and SERVER_CONNECTED) as the wiki page says. Its usual use is to present a different SSL certificate based on L4 information (so you could, for example, have one certificate for internal users and another for external ones).
- Guido_Vosmeer_9Jun 27, 2008Historic F5 AccountYeah, that's what I thought.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects