Forum Discussion
spark_86682
Feb 07, 2012Historic F5 Account
Two possibilities:
1) Split your iRule into two (this doesn't mean you have to maintain two copies of the same/similar iRules). Have one iRule with just the HTTP-only parts and a second with just the SSL parts. For non-SSL vips, just apply the first iRule, and for SSL vips apply both iRules.
2) Stuff the SSL commands into a variable, and then use "eval" on that variable. That will hide them from the validation code. Of course, you'll still need to check for an SSL profile, otherwise those commands will error out. There should be several examples of this somewhere in the codeshare. I thought the proxypass iRule did this? Can't remember exactly.