Proxy Pass iRule Question

Ok, I am not sure if I have posted in the right thread, but here is my issue.

 

I am trying to incorporate a proxy pass pass feature on the Big IP, I have used the proxy pass rule available on the devcentral, the requirement is

 

http://sitea.domain.com/abc/whatever/path/html

 

That needs to get redirected (Transparently) to http://abc.domain.com/whatever/path/html

 

 

This works perfectly fine with the Proxy pass implementation

 

I need to have a redirection, https://sites.domain.com/secure/some/html <==> https://secure.domain.com/some/html

 

The secure.domain.com is a domain which needs end to end security, since the request cant be seen, i need to use clientssl (to decrypt and do some stuff with it if need be) and since it needs to be end to end i need to use the serverssl to reencrypt it.

 

 

Here is the VIP configuration

 

 

VIP Name: sitea.domain.com

 

Port : 80

 

Default Pool : sites.domain.com (HTTP Pool)

 

iRule : ProxyPass_iRule

 

 

 

VIP Name: sites.domain.com_https

 

Port: 443

 

Client SSL :

 

Default Pool : sites.domain.com (HTTP Pool)

 

iRule : ProxyPass_iRule

 

 

 

VIP name: secure.domain.com

 

POrt :443

 

Client SSL:

 

Server SSL: serverssl

 

default Pool: SECURE (HTTPS Pool)

 

iRule : None

 

 

Data Groups

 

 

Name: ProyPasssitea.domain.com

 

"sites.domain.com/secure secure.domain.com SECURE"

 

 

Having said this, any traffic coming on the HTTPS://sites.domain.com/secure/blah/blah coming will be decrypted by the Client SSL profile and the proxy pass iRule will find a match, it will change the domain and send it to the SECURE pool, but please note at this point, according to my thought process the data will be uncrypted and will be trying to be sent to a HTTPS pool, so the connection might break.

 

 

Is this so, or am I mistaken? will this work ? Also, when the return traffic comes back from that pool memeber what would happen