Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Matt_70198's avatar
Matt_70198
Icon for Nimbostratus rankNimbostratus
Sep 26, 2013

redirecting to different port based on URL

Hello,   Did a bit of searching on this before-hand to come up with what I've got, wanted to run it by you to see if it will hold water.   There are a large number of URLs, around 80, which sha...
application delivery
devops
irules
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Sep 26, 2013

For HTTP traffic it's pretty straight forward. The client navigates to http://aaa.com, which resolves to a VIP. The VIP looks at the requested host name (aaa.com), looks that up in the data group, and then sends the traffic to the corresponding pool (a bunch of servers listening on port 8010 for example). The VIP does the port translation transparently so the client doesn't deal with the non-standard port. Port 443 is only slightly different in that the HTTPS VIP must have a certificate that can serve all of the host names (wildcard, SAN, or SNI). Otherwise the logic is exactly the same.

Redirecting users from a port 80 request to a port 443 VIP is usually a simple iRule applied to a port 80 VIP:

when HTTP_REQUEST {
    HTTP::redirect "https://[HTTP::host][HTTP::uri]"
}