For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

beyaz_152513's avatar
beyaz_152513
Icon for Nimbostratus rankNimbostratus
May 07, 2014

HTTPS to HTTP Redirection without Certificate

Hi ,

 

I need an i-rule to redirect https requests to http . i tried below rule but not working without certificate.

 

when HTTP_REQUEST { if { [TCP::local_port] == 443 } {HTTP::redirect "http://[getfield [HTTP::host] ":" 1 ][HTTP::uri]"

 

} }

 

application delivery
devops
iRules

2 Replies

  • Patrik_Jonsson's avatar
    Patrik_Jonsson
    Icon for MVP rankMVP
    May 07, 2014

    Hi!

     

    I'm sorry, but this won't work via the BigIP without a certificate. The LTM can't send an HTTP reply without an HTTP profile and this combination won't work with an HTTP profile.

     

    /Patrik

     

  • Kevin_Stewart's avatar
    Kevin_Stewart
    Icon for Employee rankEmployee
    May 07, 2014

    It really doesn't matter what certificate (and private key) you use, as long as you're applying a client SSL profile to the virtual server to offload the SSL. You'll definitely get a certificate warning in the client browser though if the certificate subject name doesn't match the requested host name. At a minimum, you need an HTTP profile to handle the HTTP protocol traffic (OSI layer 7), and a client SSL profile to decrypt the SSL (layer 6).