Forum Discussion

Altostratus

Feb 03, 2021

VIP using two different URL and certificates

I have a scenario that the server team is asking to create a VS in the F5 that will be used by an external application to access an internal application using API. But in the scenario, there are some...

Altostratus

Feb 04, 2021

Hi Daniel,

Thank you for your reply.

I got more details about the request that the application will handle.

External URL: https://url1.domain.com:10002/coreService/services

Internal URL: https://url2.domain.com:10002/coreService/services

In that case, I am thinking to use an iRule to rewrite the HTTP::host from url1.domain.com to url2.domain.com in the HTTP_REQUEST and HTTP_RESPONSE?

What do you think about it?

Regards,

Daniel_Wolf

MVP

Feb 07, 2021

Hi Thiago,

it's not a big surprise, to be honest. Standard Virtual, client and server SSL profile. It usually works.

What specific cert and key you use for the server SSL profile is not critical in most cases, therefore it works with the internal cert. Most likely the default serverssl profile would work too.

Also most modern apps do not require to rewrite host header and referer header.

So it's the final question, who came up with the requirements to do so? :)

Not for finger-pointing, but for explaining and knowing better next time.

Daniel

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)