Dirk_Laan_18877
Jul 18, 2006Nimbostratus
problem migrate cert rule from version 4 to 9
Hello,
I'm trying to get the folling rule to work on my bigip with version 9.x
I have a rule that worked fine on the bigip that is running 4.x
but on the bigip with version 9.x it still gives me the error that i did not have a client cert
the rule from version 4.x:
if (http_header("SSLClientCertStatus") == one of ccert_ok) {
use pool Portal-apps
}
else if (http_header("SSLClientCertStatus") == "NoClientCert") {
redirect to "https://test.test.nl/errors/cert_error.htm"
}
else {
redirect to "https://test.test.nl/errors/nocert.htm"
}
the rule from version 9.x:
i've created the class
when HTTP_REQUEST {
set hdr [HTTP::header "SSLClientCertStatus"]
if { [matchclass $hdr equals $::ccert_ok] } {
pool portal-apps
} elseif { $hdr equals "NoClientCert" } {
HTTP::redirect "https://test.test.nl/errors/nocert.htm"
} else {
HTTP::redirect "https://test.test.nl/errors/cert_error.htm"
}
}
any help would be great