For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Sean_Phillips_1's avatar
Sean_Phillips_1
Icon for Nimbostratus rankNimbostratus
May 17, 2007

Routing specific pages through port 443??

I am trying to route all login pages through port 443 but everything else through port 80. Will this work?     when HTTP_REQUEST {   if { ([HTTP::uri] contains "Login.asp") or ([HTTP::uri] ...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
May 21, 2007
I assume you're applying this rule to an HTTP virtual server and only want to redirect the login requests to HTTPS (leaving the rest of the requests to be answered by the HTTP virtual server). If so, the first redirect for Login.asp/Login.jsp looks correct. However, it shouldn't be necessary to redirect the requests which don't match the Login pages. You should be able to just remove the else portion:


when HTTP_REQUEST {
   if { ([HTTP::uri] contains "Login.asp") or ([HTTP::uri] contains "Login.jsp") }{
      HTTP::redirect https://[getfield [HTTP::host] ":" 1][HTTP::uri]
   }
}

As long as you have a default pool configured on the virtual server, all non-Login requests will be sent to that pool

If you're unsure of how the traffic is being parsed, you can add logging statements to the rule:

log local0. "client: [IP::client_addr] requested URI: [HTTP::uri]"

Aaron