Forum Discussion

Nimbostratus

May 18, 2011

Redirect http client to https on same non-default port

Hi guys, I have a customer request of which I'm unsure whether it can be done at all or not: I have a virtual https server on a BigIP running 10.2.0HF2. The virtual server is not r...

Cirrostratus

May 23, 2011

Can you add the logging back in to see what is being triggered in the iRule? Is it possible that the cipher is TLS and therefore not matching your check of the cipher version containing SSL?

when HTTP_REQUEST {
    enable "accept non-SSL connections" option in clientssl profile to use this iRule
   log local0. "[IP::client_addr]:[TCP::client_port]: cipher name: [SSL::cipher name], version: [SSL::cipher version], bits: [SSL::cipher bits]"
   if { not ( [SSL::cipher version] contains "SSL" ) } {
    HTTP::redirect https://[HTTP::host]:[TCP::local_port][HTTP::uri]
  }
}

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Redirect http client to https on same non-default port

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

F5 BigIP External Authentication and NTP servers in non default route domain.

Anchor Link Redirect

url redirect

F5 BIG-IP and NGINX - Securing Your AWS VPC Lattice Applications for External Clients

Upgrade APM edge client

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS