HTTPS redirect

Question

I am trying to do a redirect, if the end user types in https://mywebsite.com I want to redirect to https://www.mywebsite.com before the SSL handshake happens.  Does anyone know if this is possible?

ed_hammond_2611 · Answer

You can't see the HTTP data when it is encrypted, so you can get there.  You must decrypt it.  Sorry!

devon_jarvis · Answer

You mentioned that you want to redirect BEFORE the SSL handshake occurs. Since the client is requesting an SSL connection, it will not pass any data until this connection is established. So, no, it is not possible to redirect before the SSL handshake, AFAIK. &nbsp;
&nbsp;As Ed said, you can terminate the SSL connection using a clinet-side SSL profile. Then in an iRule, you can redirect based in your condition.&nbsp;
&nbsp;Hope this helps to direct your efforts!&nbsp;
&nbsp;DeVon&nbsp;

colin_walker_12 · Answer

This is a pretty classic chicken &amp; egg question we get asked a lot. Maybe we should write this up more clearly/prominently so people can find it more easily?  
&nbsp;  
&nbsp; Both above posters are correct, unfortunately. You can't access encrypted data until it's unencrypted on the LTM. It can't be unencrypted (since no traffic passes at all) until the handshake occurs. So you're kind of stuck. 
&nbsp;  
&nbsp; Colin

Forum Discussion

HTTPS redirect

Recent Discussions

how to whitelist new source IP on F5 web UI access

F5 to read a combined CRL file

Upgrade F5 BIGIP

ISP Load Balancing, SNAT pool instead of Automap link self-ip, anyway to do health check ?

MAC address of deleted VS IP address still responsive

Related Content

Http redirection

Landing URI iRule HTTP redirection

Https redirect

HTTP HTTPS Proxy redirect question

HTTP to HTTPS redirect with URI editing.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS