Forum Discussion
havijestan_3556
Nimbostratus
NimbostratusHTTPS session on HTTP pool server
Hi all,
I'm new to F5 appliances and to the forum.
I'm setting up a virtual server to serve clients on HTTPS. My server is running on HTTP.
I've created a certificate, a client SSL Profile, SNAT pool and a pool with just one server.
I'm having no problem making this work over HTTP from end to end, but I would like to do is to terminate the SSL connection at F5 level to make it HTTPS for end users.
Using the GUI, I specify the virtual server running on HTTPS, and on the advanced configuration, I use the "Standard" type, TCP Protocol, my defined SSL Profile (Client) with Address Translation and Port Translation activated.
Nevertheless, this ain't work and I wonder if I absolutely have to define a iRule to make this work?
Of course this would be much more easier without it, but I think that it might be inevitable given the fact that all the links on the server are referred in "HTTP" and thus should be replaced automatically with HTTPS for the end user.
Thanks for your help.
29 Replies
havijestan_3556yeah sure
it's the name of the server followed by the domain
I used the same URL that is used to access the server to generate the Certificate Request on the F5. The Certificate is then created by the Authority.
Used for the creation of the SSL Client Profile and then included in the Virtual Server config.
After the Slash I have /eRoom, but the preceding operations have been with the root URL only.- havijestan_3556
[root@safhlb1:Active] config curl -IkL https://10.144.82.3/eRoom HTTP/1.1 401 Unauthorized Server: Microsoft-IIS/6.0 X-Powered-By: ASP.NET WWW-Authenticate: Basic realm="eRoom Server" WWW-Authenticate: eRoom realm="eRoom Server" Date: Tue, 13 Mar 2012 12:07:18 GMT Connection: close - nitass
Employee
can you try this? please replace user and password with the correct one.
curl --user name:password -IkL https://10.144.82.3/eRoom - havijestan_3556it goes to a newline with
>
Waiting to enter text - nitassWaiting to enter textwas command really correct?
- havijestan_3556no actually it displays only the ">"
but I can enter text then, but nothing happens - havijestan_3556Any news nitass?
- nitassi do not get > prompt in my unit.
[root@ve1023:Active] config curl --user test:test -IkL https://172.28.19.79 HTTP/1.1 200 OK Date: Tue, 13 Mar 2012 15:12:39 GMT Server: Apache/2.2.3 (CentOS) Last-Modified: Fri, 11 Nov 2011 14:48:14 GMT ETag: "4183e4-3e-9c564780" Accept-Ranges: bytes Content-Length: 62 Content-Type: text/html; charset=UTF-8 - havijestan_3556I have a ' character in my password. Isn't it because of it?
hoolioCirrostratus
You can escape the single quote or wrap the user:pass in double quotes:
$ curl --user user:pas's www.google.com -I
>
curl --user "user:pas's" www.google.com -I
curl --user user:pas\'s www.google.com -I
Aaron
