Forum Discussion

Nimbostratus

Dec 18, 2007

Force "www." redirect if missing from HTTPS requests

I am looking for help in writing an iRule that will be used on an HTTPS virtual server. I would like the LTM to examine the HTTP request and if the URL does not include "www." then redirect the brows...

Historic F5 Account

Dec 20, 2007

Ahh, I was a little concerned this is the turn this thread would take. :-/

The short answer is: Unfortunately, no, there is no way that we can get the iRule to do host inspection before the SSL negotiation.

A slightly longer version: If you think about the data that you're trying to inspect when reading the HTTP host name, you're trying to access information that is inside the HTTP headers. Those headers are encrypted via SSL for security. So until you decrypt the transaction with the proper SSL negotiation, that data is unreadable.

This is a question we've been asked a lot, and is very much a chicken and egg scenario.

I wish I could be of more help.

Colin

Forum Discussion

Force "www." redirect if missing from HTTPS requests

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Redirect all request except few path

Logging DNS Requests

Anchor Link Redirect

F5 AWAF - bypass request based on the pressence of a request header - value

Monitoring Failure OAuth request