For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

tiwang's avatar
tiwang
Icon for Nimbostratus rankNimbostratus
Oct 14, 2014

Simple sharepoint lab problem

hi out there I started just in trying to publish SharePoint 2010 trough the F5 (11.3 with LTM & APM) - I am just playing around now to see how it Works. I am starting with a simple LTM proxie - where I hit the first problem and I can't find the right answer (or just don't understand it) - see - when I try to open the site it does a redirect to another uri: Oct 14 22:43:42 bigip1 info tmm[7591]: Rule /Common/log_headers : Client 195.81.253.32:1069 -> sp01/sites/titest/ (response) - status: 302 Oct 14 22:43:42 bigip1 info tmm[7591]: Rule /Common/log_headers : Content-Type: text/html; charset=UTF-8 Oct 14 22:43:42 bigip1 info tmm[7591]: Rule /Common/log_headers : Location: http://sp01/sites/titest/SitePages/Home.aspx Oct 14 22:43:42 bigip1 info tmm[7591]: Rule /Common/log_headers : Server: Microsoft-IIS/7.5

 

it does a redirect from /sites/titest to /sites/titest/SitePages/Home.aspx but it doesnt look to me as if this redirect is passed through to the client. How does I get it redirected ?

 

best regards /ti

 

application delivery
BIG-IP Access Policy Manager (APM)
devops
iRules
security
sharepoint 2010

6 Replies

  • tiwang's avatar
    tiwang
    Icon for Nimbostratus rankNimbostratus
    Oct 20, 2014

    hi Again Thanks a lot Arnaud - this did the trick

     

    best regards /ti

     

  • Arnaud_Lemaire's avatar
    Arnaud_Lemaire
    Icon for Employee rankEmployee
    Oct 20, 2014

    can you try this:

        when HTTP_RESPONSE {
      if { [HTTP::status] == "302" } {
        if { [HTTP::header "Location"] starts_with "http://" } {
            HTTP::header replace "Location" [string map {http https} [HTTP::header "Location"] ]
        }
      }
    }
  • tiwang's avatar
    tiwang
    Icon for Nimbostratus rankNimbostratus
    Oct 20, 2014

    hi Again ok - what is happening is of course this "stupid" redirect problem - since the SharePoint webserver is running on a non-encrypted site (port 80) the redirect is handled in this way - which of course not is accessibly by the client - when the request is done to:

     

    https://sp01.dom1.dk/sites/titest/

     

    the webserver will issue a 302 with location set to:

     

    http://sp01.dom1.dk/sites/titest/SitePages/Home.aspx

     

    and this is passed trough to the client

     

    I need a irule which will catch a 302 and change the http to https in the URL - should be pretty simple - but stupid me is a bit in doubt where to start - there must be lots of these samples here but in fact I can't find - help....

     

    best regards /ti

     

  • tiwang's avatar
    tiwang
    Icon for Nimbostratus rankNimbostratus
    Oct 17, 2014

    Hi Arnaud

     

    I have done a dump on the f5 but I can also do a fiddler on the client - I can post the result on monday. What I have seen until now is that if I instead of using the "default top level" which issues the redirect instaed tries to launch /sites/titest/SitePages/Home.aspx I can get the session up but the redirect doesnt Work. best regards /ti

     

  • Arnaud_Lemaire's avatar
    Arnaud_Lemaire
    Icon for Employee rankEmployee
    Oct 16, 2014

    Hello tiwang, could you run a browser plugin or web Dev tools to make sure about response you receive at the client side ?

     

  • tiwang's avatar
    tiwang
    Icon for Nimbostratus rankNimbostratus
    Oct 15, 2014
    hi Again - really noone which can give me a Little hint?