Redirecting HTTPS to HTTP without SSL offload

Question

I'm sure this has been covered in the past, and if so please just point me to the post (my forum search resulted with too many hits).&nbsp;
&nbsp;My question:  Is it possible to redirect client request to a virtual listening on 443 to 80 without accepting the connection, sending a 302 redirect, and terminating the connection.  We're trying to avoid having to purchase yet another cert.&nbsp;
&nbsp;Thx in advance.

brian_gupta_115 · Answer

No, unfortunately, the SSL negotiation between the browser and the BigIP has to occur first. -Brian

unruley_95363 · Answer

When you say, "another cert", I'm assuming you already have one and you are terminating it on the BigIP?  If so, you could always use that cert to terminate the SSL and then do the redirect, but I'm not sure how you have your domains set up...

tim_brown · Answer

Essentially the cert will be expiring and the customer as indicated that the SSL side of the site is no longer necessary.  They would prefer to save the cost of the cert as well as avoid having to notify their customers of the site change.

Forum Discussion

Redirecting HTTPS to HTTP without SSL offload

Recent Discussions

Need Urgent BIGIP Trial License and VM Image

APM for banner and cert

How to Renew F5 Device Certificate

UCS backup not loading Big IP DNS pool

XC Bot defense question

Related Content

HTTPS offload rewriting

FTPS Offload via iRules

(HTTP) Redirection via Arbitrary Host Header

SSL Offload with HTTP/2.0

Anchor Link Redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS