F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

shaibal_mitra_8's avatar
shaibal_mitra_8
Icon for Nimbostratus rankNimbostratus
Jan 23, 2014

Redirect Rewrite

We have a F5(DMZ) and a internal F5 HA pair.Behind internal F5 there is a SAP AIX box.Both internal/external clients access the my.domainname.com site which is a SAP NetWeaver site.In the SAP NetWeaver site there is a SuccessFactors link.When a user clicks on this link the SAP AIX box sends a redirect to an internal Windows server which gives back the end page.This internal Windows server does not have a external DNS entry.As a result this link works internally but not externally. My question is whether we can rewrite the redirect response from SAP on the internal F5 to point to a new virtual server which points back to the internal Windows server without having to add external DNS entries.

 

6 Replies

  • Cory_50405's avatar
    Cory_50405
    Icon for Noctilucent rankNoctilucent
    Jan 23, 2014

    You could use a stream profile to change the redirect target that goes to the external client. Rather than seeing that internally accessible FQDN, you could rewrite it to something available externally.

     

    Stream profile information can be found here:

     

    http://support.f5.com/kb/en-us/solutions/public/8000/100/sol8115.html

     

  • shaibal_mitra_8's avatar
    shaibal_mitra_8
    Icon for Nimbostratus rankNimbostratus
    Jan 23, 2014

    I understand that.My question is can I do this without having to make external DNS changes.

     

    • Cory_50405's avatar
      Cory_50405
      Icon for Noctilucent rankNoctilucent
      Jan 23, 2014
      If you're sending an external user a redirect, you're going to have to provide them something valid to redirect to. Based on your description above, it sounds like you will need a new external DNS record.
  • shaibal_mitra_8's avatar
    shaibal_mitra_8
    Icon for Nimbostratus rankNimbostratus
    Jan 23, 2014

    Why cant I rewrite with something like my.domainname.com/dummyurl,then create a irule in dmz to check for dummyurl in http header and then pass on to new virtual server on internal F5 which points back to the internal windoes server

     

    • Cory_50405's avatar
      Cory_50405
      Icon for Noctilucent rankNoctilucent
      Jan 23, 2014
      You can do things the way you are saying, but like Arie said, a new public DNS record is by far the simplest and cleanest way to do it.
  • Arie's avatar
    Arie
    Icon for Altostratus rankAltostratus
    Jan 23, 2014

    You certainly could make it work via what essentially would be a workaround on the LTM (aka as "kludge"), but it sounds like the right solution would be to add a public DNS-record for the subdomain you're already using internally...