HTTP Redirect OWA without SSL

Question

Hello, I am new to the F5 iRules.  I am trying to load balance the Exchange OWA.  Since it is internal, we are not using SSL.  I have used the following iRule from the deployment guide, but modified to remove the https.  It appears to be looping.&nbsp;
&nbsp;when HTTP_REQUEST {
&nbsp;     HTTP::redirect "http://[HTTP::host]/owa"
&nbsp;}&nbsp;
&nbsp;Yet, when I use the following rule with a static IP address, it works just fine.&nbsp;
&nbsp;when HTTP_REQUEST {&nbsp;
     HTTP::redirect "http://10.0.0.24/owa"&nbsp;
}&nbsp;
&nbsp;I have been working with the support from F5, but we seem to be going around in circles and he doesn't seem to know what the issue is.  Going on day 3.  Does anyone know why it is looping?  Is there a way to redirect the traffic without changing the URL address from the end users perspective?  I hope that makes sense.&nbsp;
&nbsp;Thank you in advance.&nbsp;&nbsp;

kirk_bauer_1018 · Answer

Try this out: 
&nbsp;  
&nbsp; when HTTP_REQUEST { 
&nbsp;    if {[HTTP:uri] equals "/"} { 
&nbsp;       HTTP:redirect "http://[HTTP::host]/owa" 
&nbsp;    } 
&nbsp; }

kirk_bauer_1018 · Answer

Try this out: 
&nbsp;  
&nbsp; when HTTP_REQUEST { 
&nbsp;    if {[HTTP:uri] equals "/"} { 
&nbsp;       HTTP:redirect "http://[HTTP::host]/owa" 
&nbsp;    } 
&nbsp; }

michael_yates · Answer

Where I work we try to write what we call "any.any" iRules.  Meaning that we can apply it to any Virtual Server and get the same result. 
  
 This is our HTTPS to HTTP Redirect iRule.  It will get the [HTTP::host] and [HTTP::uri] of whatever you apply it to and redirect it to HTTP.

when HTTP_REQUEST {
  HTTP::redirect http://[getfield [HTTP::host] ":" 1][HTTP::uri]
}

The key is where you apply the iRule.  Do NOT apply an HTTPS to HTTP Redirect to your HTTP Virtual Server (only your HTTPS Virtual Server) or you will create an endless loop.

naladar_65658 · Answer

Hello David, 
&nbsp;  
&nbsp; Joe Pruitt wrote an excellent post back in 2005 that provides good examples of redirecting traffic without changing/updating the users browser.  He refers to it as transparent header modification.  Basically you scan for the uri in question, when your condition is met you then pass a different uri to the backend server and the client never knows the difference. 
&nbsp;  
&nbsp; Here is a link to that: 
&nbsp; http://devcentral.f5.com/weblogs/joe/archive/2005/07/27/ModifyingUriWithoutRedirect.aspx 
&nbsp;  
&nbsp; I am not familiar with your network setup, BUT the way we do our OWA traffic is not by setting up an iRule like that.  What we do is have a simple string iRule that looks for the "/owa/" in the URI and when it sees it, it just sends the traffic over to the pool of OWA servers.  What do you have setup as your default pool for that VIP?

Forum Discussion

HTTP Redirect OWA without SSL

4 Replies

Recent Discussions

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Chrome V 124+ on MacOS - Virtual Server Access Issue

Related Content

Anchor Link Redirect

The HTTP/2 CONTINUATION frame attack

Rewrite HTTP Redirect Hostname

HTTPS to HTTP

Universal HTTP host redirect