Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

csyvenky_18355's avatar
csyvenky_18355
Icon for Nimbostratus rankNimbostratus
Mar 08, 2010

SSL only some of the time, non-SSL for the rest

Production Ver: BIG-IP 9.4.6 Build 401.0 Final     The issue(s): IE6 prompts users "this page contains both secure and nonsecure items" if they have browsed from SITE1 to SUBSITE1 then bac...
application delivery
dev
devops
irules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Mar 08, 2010
I don't think this is a problem with implementing a solution in LTM configuration or iRules--it's a problem with identifying what content you want served via HTTP and which you want served via HTTPS, and then coding an iRule to handle the different references the application might have to HTTP and HTTPS. A poster in the "Mixed noSSL/SSL site" post was able to do this for his specific scenario.

 

 

I'd suggest you reproduce the configuration in a test environment or with test VIPs and then use a browser plugin like HttpFox for Firefox or Fiddler for IE to determine exactly which references you want to rewrite and where. Once you figure that out, we can help you implement the logic in an iRule.

 

 

Aaron