Forum Discussion

Cirrus

Aug 02, 2023

F5 redirect

Hi! I have 2 F5s active standby cluster BIG-IP 16.1.3 build 0.0.12 and I have a VServer called: xyz.acme.com:443. It's public internet facing, with public cert imported as a server profile - works ...

application delivery

redirect

mihaic

MVP

I don't think it will work ,as you said you have a cert only for the first domain.

You probably need a wildcard cert for *.acme.com

or a SAN certificate.

CA_Valli

MVP

Aug 03, 2023

I agree with other MVP's here, SSL will see SNI mismatch at handshake time and return a warning.
You need to import a wildcard certificate (which you might already have bought) , or to renew xyz.acme.com with z.acme.cm as the SAN, or to request z.acme.com cert (and in this case, you also need to configure two clientSSL profiles on the BIG-IP)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

F5 redirect

Recent Discussions

APM RDP custom parameters

Reporting Help Needed

Switch ssl profile based on weak cipher detection via IRULE

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Related Content

iRule assistance for subfolder redirect

Replace path in redirect

redirect with variable uri

HTTP::redirect doesn't work for multiple conditions, URL redirect doesn't work using iRule

external URL redirection

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS