http to https VIP

Cory,

Thanks for your help buddy.

I will test this later after business hours and report back.

MJ

Cory,

I was able to test this and it's still not redirecting. I took a pcap and found something that seems interesting:

GET /Doc1/Login.aspx HTTP/1.1

Accept: image/jpeg, image/gif, image/pjpeg, application/x-ms-application, application/xaml+xml, application/x-ms-xbap, /

Accept-Language: en-US

User-Agent: Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; WOW64; Trident/4.0; SLCC2; .NET CLR 2.0.50727; .NET CLR 3.5.30729; .NET CLR 3.0.30729; .NET4.0C; .NET4.0E)

Accept-Encoding: gzip, deflate

Host: HostName.DomainName.com

Connection: Keep-Alive

HTTP/1.1 200 OK

Server: Microsoft-IIS/7.5

X-Powered-By: ASP.NET

X-UA-Compatible: IE=9

Date: Fri, 09 May 2014 17:15:47 GMT

Content-Length: 263

the redirect seems to be part of the payload through a java script, so I think this is the reason the iRule didn't work with this VIP.

Good morning Cory,

any more thoughts about a solution for this issue? I am kind of stock and not sure what else to do at this point.

Was the capture you took on the server side? How are you determining that the issue could be Javascript related?

What are you seeing on the client side?

the capture was done on BigIP over ssh: tcpdump -ni 0.0:nnn -s0 host x.x.x.x -w /var/tmp/external.cap & tcpdump -ni 0.0:nnn -s0 '(host x.x.x.x)' -w /var/tmp/internal.cap &

I was testing the access from a windows server in the internal network.

Can you run a Wireshark capture from your Windows server and see what the client is receiving from the BIG-IP?

yes sir will do and report back soon.

so the packet capture on the server where the connection is being establish showed that the client is getting the response back directly from the web server rather than from the VIP, which would be a problem.

Aha. Enabling SNAT on your virtual server should resolve this issue. Try using SNAT auto map and see if it works.

I checked that and it is enabled: