For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

cquick11_115408's avatar
cquick11_115408
Icon for Nimbostratus rankNimbostratus
Mar 22, 2014

http redirect to https based on http::uri

I am trying to set up redirection from http to https, and vice versa, based on uris. examples: /login.aspx /dashboard.aspx. If someone went to login.aspx and it should go to https, then if someone cl...
application delivery
design
devops
iRules
LTM
microsoft
giltjr's avatar
giltjr
Icon for Nimbostratus rankNimbostratus
Mar 22, 2014

That is because you are not checking to see if you are already HTTPS. You need to check to see if you are https or not. Something like:

 

when CLIENT_ACCEPTED { Check for SSL if {[TCP::local_port] eq 443 } {set SSL 1} else {set SSL 0} }

 

when HTTP_REQUEST { if { !$SSL } { if { [HTTP::uri] starts_with "/login.aspx" or [HTTP::uri] starts_with "/Dashboard.aspx" } { HTTP::redirect https://[HTTP::host][HTTP::uri] ; return } else { use pool POOL_HTTP ; log local0. "https-redirect [IP::client_addr] [HTTP::host]" } } }

 

when HTTP_REQUEST { if { !$SSL } { if ([HTTP::uri] starts_with "/login.aspx") or ([HTTP::uri] starts_with "/Dashboard.aspx") } { HTTP::redirect "https://[HTTP::host][HTTP::uri]" } elseif { use pool POOL_HTTP log local0. "https-redirect [IP::client_addr] [HTTP::host]" } } }