Irule creation

Question

Hi,&nbsp;
Need a help on irule i have a site  when user hits this they have to be redirected to https://aaa.yyy.com where as yyy.com is our domain name.I have cert with FQDN aaa.yyy.com. So whenever user hits  they are getting SSL error.
Note:I cannot add  aaa as SAN name to cert because this is external cert and we access this url both internal and external.&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
when the browser first requests , the browser :&nbsp;
open TCP connectionInitiate the TLS handshake with server name "aaa"receive the browser with aaa.yyy.com certificatedisplay SSL error, the user accept the SSL errorsend request for receive the redirect to https://aaa.yyy.com
you can create a certificate for aaa sign by your internal CA (imported in browsers trusted CA) and enable SNI&nbsp;

dinesh3888 · Answer

Thanks Piron. Do we need to import the private cert in all users browser?&nbsp;

stanislas_piro2 · Answer

do you already have a certificate authority in your company?&nbsp;

dinesh3888 · Answer

Yes we have&nbsp;

stanislas_piro2 · Answer

So I guess this certificate authority is already added as trusted CA on all AD computers.&nbsp;
If it is, there is no more action to be done on computers.&nbsp;

Forum Discussion

Irule creation

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

iRule Creation Query

iRule creation based on URI

API RESTful - Creation a new rule by curl

data group creation on Big IP 10.2.4

iRule creation based on URI

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS