webdav rule exclusion

Question

&nbsp;We have the following http redirect in place on a microsoft sharepoint site&nbsp;&nbsp;
 Request for  will redirect to &nbsp;
&nbsp;when HTTP_REQUEST {
&nbsp;  if { [HTTP::host] equals "hostname"} {
&nbsp;    HTTP::redirect "http://fqdn[HTTP::uri]"
&nbsp;  }
&nbsp;}&nbsp;&nbsp;
&nbsp;this works fine for most http requests except for http webdav requests used when using sharepoint explorer view. &nbsp;&nbsp;

http://www.scribd.com/doc/2917779/Understanding-and-Troubleshooting-SharePoint-Explorer-View

&nbsp;
&nbsp;
&nbsp;
http://www.scribd.com/doc/2917779/U...lorer-View
&nbsp;
&nbsp;

http://mysharepointofview.com/2009/05/a-word-about-troubleshooting-the-explorer-view/

&nbsp;

So I need to exclude the webdav traffic from being redirected. Using the shortname\hostname works when the http redirect irule is not applied to the VIP.  Can anyone help me with this?
&nbsp;
 &nbsp;

&nbsp; &nbsp;

nitass · Answer

may we detect webdav using HTTP::method? 
&nbsp;  
&nbsp; How do I detect a web dav request? 
&nbsp; http://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/50/aft/1179140/showtab/groupforums/Default.aspx

auz_102504 · Answer

I think its using the following user agent 
&nbsp;  
&nbsp; HEAD /SomFolder/SomeFile.doc HTTP/1.1 
&nbsp; User-Agent: Microsoft Office Existence Discovery 
&nbsp;  
&nbsp; The other way we could possibly get around this is by excluding certain URL's from the redirect as well.

auz_102504 · Answer

also  
&nbsp;  
&nbsp; The protocol consists of a set of new methods and headers for use in HTTP. The added methods include: 
&nbsp;  PROPFIND — used to retrieve properties, stored as XML, from a resource. It is also overloaded to allow one to retrieve the collection structure (a.k.a. directory hierarchy) of a remote system. 
&nbsp;  PROPPATCH — used to change and delete multiple properties on a resource in a single atomic act 
&nbsp;  MKCOL — used to create collections (a.k.a. a directory) 
&nbsp;  COPY — used to copy a resource from one URI to another 
&nbsp;  MOVE — used to move a resource from one URI to another 
&nbsp;  LOCK — used to put a lock on a resource. WebDAV supports both shared and exclusive locks. 
&nbsp;  UNLOCK — used to remove a lock from a resource &nbsp;

auz_102504 · Answer

Some more information on the user agent I found here&nbsp;&nbsp;

http://support.microsoft.com/kb/832161
&nbsp;
&nbsp;
Windows XP
&nbsp;The WebClient service is used if you connect a Web Folders without specifying a port. For example, if you use the "http://webserver/davscratch" URL, a network trace shows something that is similar to the following in the HTTP header:&nbsp;&nbsp;
&nbsp;  HTTP: User-Agent = Microsoft-WebDAV-MiniRedir/5.1.2600&nbsp;&nbsp;&nbsp;&nbsp;
Microsoft Office
&nbsp;When you use the syntax that includes a port number, you connect with Office WebDAV. For example, if you use the "http://webserver:80/davscratch" URL, a network trace shows something that is similar to the following: &nbsp;&nbsp;
&nbsp;HTTP: User-Agent = Microsoft Data Access Internet Publishing Provider DAV &nbsp;
&nbsp;Further known issues with Microsoft-WebDAV-MiniRedir&nbsp;

&nbsp;
&nbsp;

&nbsp;So it also looks as though there could be other issues as well depending on the clients connecting to the site most clients are running windows xp with the latest service pack but there are some clients running windows 7. However, the fact that it works without going through BigIP LTM means these issues have already been resolved.  &nbsp;&nbsp;
Any update on this ?&nbsp;&nbsp;&nbsp;&nbsp;
 &nbsp;

auz_102504 · Answer

Nittass this is from a windows 7 packet capture without going through BigIP LTM &nbsp;
&nbsp; OPTIONS /somefile/doc HTTP/1.1 
&nbsp; Connection: Keep-Alive 
&nbsp; User-Agent: Microsoft-WebDAV-MiniRedir/6.1.7601  
&nbsp; translate &nbsp;
&nbsp; HTTP/1.0 302 Found  
&nbsp; Location: http://fqdn/somefile/doc  
&nbsp; Server: BigIP  
&nbsp; Connection: Keep-Alive  
&nbsp; Content-Length: 0  &nbsp;
&nbsp; Any chance on an update

Forum Discussion

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

How to Verify config before loading to F5

Logical Disk Full to Migrate rSeries

HSL - Local TimeZone - in syslog server

VIP control across data centers - how to ensure only 1 VIP is up at a time?

Related Content

IIS 6.0 WebDAV Buffer Overflow

F5 Distributed Cloud Origin Server Subset Rules

LTM Cipher rule

F5 Rules for AWS WAF - Rule ID to Attack Type Reference

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not