jondyke_46152
Jan 24, 2011Nimbostratus
pass through client certificate irule
I am currenlty using the irule below for performing SSL passthrough on traffic. Is there any way I could midify this irule so that it only passed through SSL traffic that has a client certificate attached, and offloaded the rest of the traffic on the F5?
when CLIENT_ACCEPTED {
Check if there are members available in the VIP's default pool if {[active_members [LB::server pool]]}{
Disable the client SSL profile so the HTTPS traffic is passed through encrypted to the node SSL::disable
Disable the HTTP profile as we're not going to redirect this request HTTP::disable }
}
when HTTP_REQUEST { The HTTP_REQUEST event is only triggered if the pool members are down and the client SSL and HTTP profiles are left enabled Redirect the client HTTP::redirect https://maintenance.example.com }
Thanks,
Jon