Forum Discussion

Nimbostratus

Jun 13, 2008

Selective SSL rewrite by hostname

Hi, I'm running a Blackboard e-learning system with SSL offload using a simple rewrite rule to only encrypt text/html (due to problems with binary formats) and I need to also exclude an...

andyr0ck_5031

Nimbostratus

Jul 08, 2008

Thanks, Aaron. Yes, it's the client IP we're after. The problem wasn't with this rule, it was with a 'catch-all' rule we had listening on the insecure port to redirect all traffic to the SSL port. Turnitin seems to require to connect on 80 then renegotiate to 443. I hashed together this out of your code:

when HTTP_REQUEST {

Remove the Pragma header

HTTP::header remove "Pragma"

if { ([IP::addr [IP::client_addr] equals 208.57.158.0/255.255.255.0]) } {

} else { HTTP::redirect https://[HTTP::host][HTTP::uri]

}

cheers,

Andy

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Selective SSL rewrite by hostname

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

Rewrite HTTP Redirect Hostname

Rewriting Redirects

Thinking Outside the Box: Rewriting Web Pages with F5 Distributed Cloud (XC)

Rewriting iRules...LIVE!

SOCKSv4 protocol parsing and IP/Port/Hostname rewrites

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS