Irule creation

Question

Hi,&nbsp;
Need a help on irule i have a site  when user hits this they have to be redirected to https://aaa.yyy.com where as yyy.com is our domain name.I have cert with FQDN aaa.yyy.com. So whenever user hits  they are getting SSL error.
Note:I cannot add  aaa as SAN name to cert because this is external cert and we access this url both internal and external.&nbsp;

stanislas_piro2 · Answer

Hi,&nbsp;
when the browser first requests , the browser :&nbsp;
open TCP connectionInitiate the TLS handshake with server name "aaa"receive the browser with aaa.yyy.com certificatedisplay SSL error, the user accept the SSL errorsend request for receive the redirect to https://aaa.yyy.com
you can create a certificate for aaa sign by your internal CA (imported in browsers trusted CA) and enable SNI&nbsp;

dinesh3888 · Answer

Thanks Piron. Do we need to import the private cert in all users browser?&nbsp;

stanislas_piro2 · Answer

do you already have a certificate authority in your company?&nbsp;

dinesh3888 · Answer

Yes we have&nbsp;

stanislas_piro2 · Answer

So I guess this certificate authority is already added as trusted CA on all AD computers.&nbsp;
If it is, there is no more action to be done on computers.&nbsp;

Forum Discussion

Irule creation

5 Replies

Recent Discussions

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Related Content

AS3 Json for pool creation

Manage F5 BIG-IP Advanced WAF Policies with Terraform (Part 1 - Policy Creation)

iRule Creation Query

F5 case creation tweaks

iRule creation based on URI