Forum Discussion
F5 SSL offloading and Port redirection
Dear Support,
I need your help on to create a https VIP on F5 that terminates SSL from the client and send http traffic to the server on
5 Replies
- Michael_Jenkins
Cirrostratus
You can set up the VIP with a client side ssl profile and an http profile to offload the HTTPS traffic, and then assign it a pool whose member(s) are set up for port 19000. On the VIP configuration if you change the
toConfiguration
from Basic, I think theAdvanced
andAddress Translation
options are automatically checked, which should accomplish what you're asking for.Port Translation - Max_Q_factor
Cirrocumulus
You also might want to add an irule to redirect people from the root page of say to with an irule like:
when HTTP_REQUEST { HTTP::redirect https://[getfield [HTTP::host] ":" 1]/workspace/index.jsp } - Peter_Salama_20
Nimbostratus
Hi,
I have tried below iRule and the redirection is happening for the URI but the protocol is http instead of https
when HTTP_REQUEST { if { [HTTP::host] equals "website"}{ if { [HTTP::uri] equals "/" } {
HTTP::redirect "http://[HTTP::host]/workspace/index.jsp" }} }
- Max_Q_factor
Cirrocumulus
It appears that the back end is HTTP but HTTPS from the client's prospective. Have you tried changing your redirect to "https://[HTTP::host]/workspace/index.jsp" ?
- Michael_Jenkins
Cirrostratus
How about this? If the URI is empty, it'll redirect to workspace/index.jsp (using the same hostname)
when HTTP_REQUEST { if { "[string tolower [HTTP::host]][HTTP::uri]" equals "www.example.com/" } { HTTP::redirect "/workspace/index.jsp" } }
Help guide the future of your DevCentral Community!
What tools do you use to collaborate? (1min - anonymous)Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com