Possible to redirect a https to a different https in which the VIP is using L4

Question

Is it possible using iRules to redirect a https to a different https in which the LTM VIP is in L4 forwarding mode? Or does SSL have to be terminated at the LTM VIP to do any modifications?&nbsp;
For example https://myapp.abc.com (GTM Wide IP) is redirected (or header replace?) to https://myapp.boston-dc.abc.com&nbsp;
Thank you&nbsp;

chris_grant · Answer

You would not be able to do this with an encrypted data stream or with a fastl4 virtual.  In neither case is the BigIP aware of the URL, so decisions cannot be made based on the URL.  
&nbsp;
With an encrypted data stream, we would not be able to see inside the payload without decrypting.  And with a FastL4 profile, we would not have logic applied to analyze the layer 7 data.  
&nbsp;
To make this work you would need to have SSL terminated on a regular virtual server with an HTTP profile applied.  Applying an HTTP profile to an unterminated virtual server would result in no traffic passing (as we would never see the HTTP traffic we needed to make a load balancing decision).&nbsp;

Forum Discussion

Possible to redirect a https to a different https in which the VIP is using L4

1 Reply

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

F5OS cloud-init on 21.1 does tenants come with DO and AS3 RPM installed?

AS3 per-app JSON schema issue

F5 LTM Virtual Server IP NAT Configuration

F5 https monitor receive string

Multiple two-way SSL client Profiles - possible?

Related Content

Logging/Blocking possible prompt injection

F5 HTTPS Redirect 2025

Redirect to different Pool based on URL

Rewriting Redirects

TCL Error possibly causing TCP Resets?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS