Forum Discussion

Nimbostratus

Sep 07, 2012

Secure Site not working correctly

Hi I have a secure site that has the following at the bottom of the page.. "Only secure content is displayed" is there a way on the F5 that i can remove this...

Cirrostratus

Sep 07, 2012

Hi Angelo,

It sounds like the application is referencing itself over HTTP when being SSL proxied by LTM. If you want to avoid the client getting an insecure content warning, you'd want to rewrite the response headers and/or payload from http:// to https://. It would help to determine where the http:// reference is (in response headers and/or content). You can use a browser plugin like HttpFox for Firefox or Fiddler.

Depending on the application, you might be able to configure it to reference itself using https://. If not, you should be able to use an iRule to rewrite the http:// references to https://.

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Secure Site not working correctly

Recent Discussions

ip x-forwarding

ports are showing open on online scanning tool

Upgrade F5 BIGIP

DNS HM Probe issue

Is XFF a must for ASM WAF DoS

Related Content

F5 Security Podcasts

iRule for AFM IP Intelligence security policy to work with HTTP XFF (X-Forwarded-For) headers

Certifications for security professionals

API security

Ensuring Security in Continuous Integration and Continuous Deployment (CI/CD) Pipelines

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS