F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Jay_Prasanth_13's avatar
Jay_Prasanth_13
Icon for Nimbostratus rankNimbostratus
Dec 05, 2013

How to force HTTPS on masked uri?

can anyone help me to force HTTPS on masked uri?   For eg : if {[HTTP::uri] eq "/dd" HTTP::uri "/xx/yyy/ddd"   Current outcome - http://mysite/dd , however HTTPS works if mention explicitly. ...
application delivery
devops
iRules
IheartF5_45022's avatar
IheartF5_45022
Icon for Nacreous rankNacreous
Dec 05, 2013

so if I am correctly interpreting your requirements, you want to force /dd to HTTPS, and if it is HTTPS, rewrite the URI to /xx/yyy/ddd?

when HTTP_REQUEST {
    if {[HTTP::uri] eq "/dd"} {
        if {[TCP::local_port] == 80} {
             Force to HTTPS
            HTTP::redirect "https://[HTTP:host][HTTP::uri]
            return
        } else {
             It's already HTTPS,  rewrite URI
            HTTP::uri "/xx/yyy/ddd"
        }
    }
Jay_Prasanth_13's avatar
Jay_Prasanth_13
Icon for Nimbostratus rankNimbostratus
Dec 16, 2013
I missed this one ... , HTTPS://XX.COM/YYY/DD is a vanity URL . You are right , we have 80 and 443 , the iRule you have stated is already in place , it forces HTTPS for default URL's , but not for VANITY URL's. Eg. in current setup ,when I type in the browser , http://xx.com --> it redirects to https://xx.com/yyy/dd requirement is if I type explicitly , http://xx.com/dd --> it should redirects internally to vanity URL https://xx.com/yyy/dd ( should hide /yyy and force https )