f5 mixed contents and block images

Question

Hii created HTTPs VS for our website but then i got Mixed content error i solved that issue by applying stream profile and i applied also this irulewhen HTTP_REQUEST {# Disable the stream filter for all requestsSTREAM::disable# LTM does not decompress response content, so if the server has compression enabled# and it cannot be disabled on the server, we can prevent the server from# sending a compressed response by removing the compression offerings from the clientHTTP::header remove "Accept-Encoding"}when HTTP_RESPONSE {# Check if response type is textif {[HTTP::header value Content-Type] contains "text"}{# Replace http:// with https://STREAM::expression {@http://@https://@}# Enable the stream filter for this response onlySTREAM::enable}}but now not all images are loaded through F5 like svg or pngso again i appliedwhen HTTP_REQUEST {# Disable the stream filter for all requestsSTREAM::disable}when HTTP_RESPONSE {# Check if response type is text, javascript, svg, or other imagesif {[HTTP::header value Content-Type] contains "text" || [HTTP::header value Content-Type] contains "javascript" || [HTTP::header value Content-Type] contains "svg" || [HTTP::header value Content-Type] contains "jpeg" || [HTTP::header value Content-Type] contains "png" || [HTTP::header value Content-Type] contains "gif"} {# Replace http:// with https://STREAM::expression {@http://@https://@}# Enable the stream filter for this response onlySTREAM::enable}}but still have issueAny idea please

ahmadj · Answer

LiefZimmermanThank you for your reply the issue already solvedThank u again

whisperer · Answer

What are you trying to accomplish? If the origin servers are returning a response with http urls and you want to rewrite to https, you may be better off simply proxying https on the client side of the virtual IP and communicating with the origin (server side) via HTTP.

Usually, when I do HTTP response rewrites like this, it is when there is an ancient or broken server that uses absolute paths with the inside non routeable IP address as the host. However, in this case, I generally would not filter on the content-type because there would be a few -- lots of elements being loaded by a single HTTP page -- generally text, various images, and perhaps some hosted files like PDFs.

ahmadj · Answer

thank you polskikrol for your replyi am trying to configure https VS on F5 also the communication betwen VS and backend is with httpthe issue that i have images not loadingthe above irules i got it from my.f5.com/manage/s/article/K31100432

whisperer · Answer

Did you look at the web page source to see how the URLs are written? Can you provide an example. In particular, how the image html tag src target is coded from the origin server. Once you have this, one can make a decision based on the issue -- fix on origin server, or have the F5 transform the src reference.

ahmadj · Answer

as you can see from above, the url for this service using https through F5 this image which is in the screenshot is .png and it is not loading but we have another image with same .png and loading finesame issue with other extensions like svgi tried to access the above by using the HTTP server URL directly and all working fine but with F5 it is not working

Forum Discussion

f5 mixed contents and block images

9 Replies

Recent Discussions

About shun list for L7 DDoS?

CONNECTION IS LOST DUE TO SELF IP IS DELIVERED

ASM instance creation

Can iRule mask the payload content on event logs of security

Disacard SSL::cert mode to ignore when default SSLClient profile is set to request or require

Related Content

Layer 7 Content Routing in F5 XC

How to use F5 image generator tool to prep BIG-IP images for AWS and Azure

DevCentral Content Highlights

Mixed content error

iRule to modify a content-security-policy header