Irule creation

Question

Hi,&nbsp;
Need a help on irule i have a site  when user hits this they have to be redirected to https://aaa.yyy.com where as yyy.com is our domain name.I have cert with FQDN aaa.yyy.com. So whenever user hits  they are getting SSL error.
Note:I cannot add  aaa as SAN name to cert because this is external cert and we access this url both internal and external.&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
when the browser first requests , the browser :&nbsp;
open TCP connectionInitiate the TLS handshake with server name "aaa"receive the browser with aaa.yyy.com certificatedisplay SSL error, the user accept the SSL errorsend request for receive the redirect to https://aaa.yyy.com
you can create a certificate for aaa sign by your internal CA (imported in browsers trusted CA) and enable SNI&nbsp;

dinesh3888 · Answer

Thanks Piron. Do we need to import the private cert in all users browser?&nbsp;

stanislas_piro2 · Answer

do you already have a certificate authority in your company?&nbsp;

dinesh3888 · Answer

Yes we have&nbsp;

stanislas_piro2 · Answer

So I guess this certificate authority is already added as trusted CA on all AD computers.&nbsp;
If it is, there is no more action to be done on computers.&nbsp;

Forum Discussion

Irule creation

5 Replies

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

AS3 for ASM Policy Creation

iRule Creation Query

F5 case creation tweaks

AS3 Json for pool creation

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 1 - Policy Creation)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS