HTTP to HTTPS without redirection

Question

Hi Experts , &nbsp;I have a requirement where CLIENT makes a HTTP_REQUEST to a VS , then VS convert that HTTP_REQUEST to HTTPS and send to the intended NODE. &nbsp;Also , this should be in full proxy architecture where we will be having two sessions , Client ---&gt; F5 for HTTP and then F5 ---&gt;server with HTTPS . &nbsp;Would this be achievable and if yes , how can we get this via IRULE or some other means . &nbsp;I parse through askf5 and devcentral BUT couldn't see any reference that MATCH my requirement . &nbsp;Thanks again &nbsp;Deepak

enes_afsin_al · Answer

Hi Deepak,&nbsp;Create a virtual server with port 80.Assign http profile.Assign serverssl profile. Don't assign clientssl.Assign pool with 443 ports members.

deepak_nair · Answer

Ok the requirement is below . &nbsp;when client make a request to the VIP URL http://www.example.com:8003/ngi/testentsys-m2p-lgmgmt-masterdata/entsys/m2p/lgmgmt/v1/commodities/:commodityId SHOULD route to AWS cloud NODE https://test.abcdef-ent-syz.com/testentsys-m2p-lgmgmt-masterdata/entsys/m2p/lgmgmt/v1/commodities/:commodityId . there are like 100 Web URL behind this NODE. So i think i need to use here an IRULE which will check for one URI string "/ppf" , STRIP that string and attach the REST URI request to HOST test.aausyd-ent-syz.com . &nbsp;CLIENT_REQUEST to VIP ----&gt; http://www.example.com:8003/ppf/testentsys-m2p-lgmgmt-masterdata/entsys/m2p/lgmgmt/v1/commodities/:commodityId&nbsp;VIP to SERVER -----&gt; https://test.abcdef-ent-syz.com/testentsys-m2p-lgmgmt-masterdata/entsys/m2p/lgmgmt/v1/commodities/:commodityId &nbsp;NO redirection SHOULD be in full proxy . &nbsp;i have written an irule BUT it returning me a RESET &nbsp;when HTTP_REQUEST {&nbsp;&nbsp;if {([string tolower [HTTP::host]] equals "www.example.com:8003") &amp;&amp; [HTTP::uri] starts_with "/ppf" }&nbsp;{&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;HTTP::header replace "Host" "test.abcdef-ent-syz.com"&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;HTTP::uri [string map [list "/ppf" "" ] [HTTP::uri]]&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;node 10.10.10.1 443&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;}}&nbsp;So my question is , can this be achievable .

enes_afsin_al · Answer

iRule looks normal.Is there another iRule in the Virtual Server?Can you investigate /var/log/ltm?

deepak_nair · Answer

Hi , &nbsp;SORRY it works now . It happens that at server end there is a firewall blocking the traffic when request is initiated from F5 which is now sorted . &nbsp;Thanks for the help again . &nbsp;&nbsp;

Forum Discussion

HTTP to HTTPS without redirection

Recent Discussions

SNI Sites not taking correct certificate.

How to Renew F5 Device Certificate

irule to enable http/2 acceleration

Service discovery is not happening in AS3

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

Related Content

(HTTP) Redirection via Arbitrary Host Header

HTTP To HTTPS Redirect 301

Http redirection

HTTP URI Replace/Redirect

HTTP POST redirect preserving POST data

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS