Forum Discussion
Mrwillbaclimon
Altocumulus
AltocumulusRedirect TLS 1.1/1.2 clients & Append the incoming URL to the redirect target
This is probably simpler than I'm trying to accomplish. I can't seem to get it working unfortunately. Any assistance would be appreciated. Summary Goal is to trigger a redirect for TLS 1.1/1.2 cli...
I did try it and it worked well...Thank you!
- I modified "ne" statement with "starts with"
- Testing User-Agent if statements now
For example
if { ([HTTP::header "User-Agent"] contains "randomagentstring") and (not ([HTTP::header "User-Agent"] contains "random/7.0")) and (not ([HTTP::header "User-Agent"] contains "xyz")) and
(not ([HTTP::header "User-Agent"] contains "abc")) and (not ([HTTP::header "User-Agent"] contains "random2")) and (not ([HTTP::header "User-Agent"] contains "random3")) and
([HTTP::header "User-Agent"] contains "Build Version random") }{I added some if bypass statements and working very well!
Thanks again
equals "TLSv1" ) and (not ([HTTP::uri] contains "tlsWarnRedirected")) and (not([HTTP::header "User-Agent"] contains "customagent"))} {
Hi Will,
Can you try this iRule?
when HTTP_REQUEST {
if { [SSL::cipher version] equals "TLSv1.1" || [SSL::cipher version] equals "TLSv1.2" } {
if { [HTTP::host] ne "xyz.com"} {
HTTP::redirect https://xyz.com/random/random/warn.html?source=https://[HTTP::host][HTTP::uri]
return
}
}
}
- Mrwillbaclimon
Thank you. I will test this in Dev shortly and respond with results.
Believe your right on point 🙂