Security Policy HTTPS redirect

Question

Hi all, 
We are using a security policy on our LTM Virtual server to block access (and redirect to a "you are blocked page")  from a list sanctioned countries.  We are using an irule to do the redirect, on Action = "Accept Decisively". The redirect for HTTP works great, but I have not been able to get the HTTPS to redirect.  I have tired several different irule configurations but none of them have worked.  
irule:
when CLIENT_ACCEPTED {
     SSL::profile /www-qa/xxx.site.443.profile.clientssl
     log local0. "XXXHTTP client accepted"

}
when HTTP_RESPONSE {
log local0. "XXXHTTP responding data"
HTTP::redirect https://you.are.blocked.com

} 
Any ideas on what I am missing, or a better way to add a redirect on a HTTPS securTty policy?
thanks

vernonwells · Answer

I assume the provided iRule is incomplete because it makes no check for the source of the request. Can you provide the full rule? Also, are you using the same iRule in the http and https Virtual Servers?

Forum Discussion

Security Policy HTTPS redirect

1 Reply

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

Auditing Security Policy Updates

Minimizing Security Complexity: Managing Distributed WAF Policies

Using Distributed Application Security Policies in Secure Multicloud Networking Customer Edge Sites

Adaptive Apps: Replicate & deploy WAF application security policies across F5's security portfolio

iRule to modify a content-security-policy header