For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

cathy_123's avatar
cathy_123
Icon for Cirrostratus rankCirrostratus
Feb 20, 2016

Stealth redirection of HTTPS

Hi Guys!   Would like to ask if the stealth redirection of a website possible in HTTPS example   http://f5.com/ss to https://f5.com/a   I will be able to view the content of https://f5.com/a...
application delivery
devops
iRules
Kai_Wilke's avatar
Kai_Wilke
Icon for MVP rankMVP
Feb 20, 2016

Hi Cathy,

 

after Ian's answer, I'm somewhat unsure if you need the stealth redirect in a forward proxy (aka. a Browser accesses the internet) or a reverse proxy scenario (aka. the internet access your web servers.

 

I you need the stealth redirect in a forward proxy scenario then Ian's answer would be the solution.

 

But if you need the silent redirect in a reverse proxy scenario, then you have to configure SSL-Termination of your Virtual:443, by assigning a Client- and Server-SSL-Profile. In this case the F5 can terminate and inspect the HTTPS request and then perform any kind of content manipulation.

 

https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm_configuration_guide_10_0_0/ltm_ssl_profiles.html

 

Cheers, Kai