Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Frank_Mancini_3's avatar
Frank_Mancini_3
Icon for Nimbostratus rankNimbostratus
Feb 11, 2008

redirection for SSL without cert HELP

If I have a virtual interface configured for TCP 443 and I have a redirection iRule to a correct good URL:     when HTTP_REQUEST {   HTTP::redirect "https://www.mysite.com"   } ...
application delivery
dev
devops
irules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Feb 12, 2008
When you make a request to an HTTPS web server and the server responds with a certificate, the browser compares the subject of the cert with the host name it made the request to. If they don't match, and the browser isn't configured to ignore cert mismatch errors, the browser will generate a cert mismatch error. As you're making a request by IP address, the cert subject won't match and you'll get the browser warning.

 

 

If you make a request which matches the cert's subject, do you still get a warning? Are clients requesting host names which don't match the cert's subject? If so, take a look at this post (Click here) for some additional info.

 

 

Aaron