Possible to redirect a https to a different https in which the VIP is using L4

Question

Is it possible using iRules to redirect a https to a different https in which the LTM VIP is in L4 forwarding mode? Or does SSL have to be terminated at the LTM VIP to do any modifications?&nbsp;
For example https://myapp.abc.com (GTM Wide IP) is redirected (or header replace?) to https://myapp.boston-dc.abc.com&nbsp;
Thank you&nbsp;

chris_grant · Answer

You would not be able to do this with an encrypted data stream or with a fastl4 virtual.  In neither case is the BigIP aware of the URL, so decisions cannot be made based on the URL.  
&nbsp;
With an encrypted data stream, we would not be able to see inside the payload without decrypting.  And with a FastL4 profile, we would not have logic applied to analyze the layer 7 data.  
&nbsp;
To make this work you would need to have SSL terminated on a regular virtual server with an HTTP profile applied.  Applying an HTTP profile to an unterminated virtual server would result in no traffic passing (as we would never see the HTTP traffic we needed to make a load balancing decision).&nbsp;

Forum Discussion

Possible to redirect a https to a different https in which the VIP is using L4

Recent Discussions

Big IP DNS Failover

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

Related Content

(HTTP) Redirection via Arbitrary Host Header

Is it possible to let the F5 XC provide different cerificate by path

SSL forward proxy on VE Lab License possible?

Anchor Link Redirect

Rewriting Redirects

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS