Invisible URL rewrite - external url to internal url

Question

Hello,&nbsp;I am currently experiencing a new issue where our customer has requested we configure a new site to rewrite the public facing url to the internal url without the client knowing the internal url. &nbsp;For example:&nbsp;https://www.newsite.com &lt;-&gt; F5 &lt;-&gt; https://internal.domain.newsite.local&nbsp;We only have experience with static URL rewrites such as appending www or redirecting to HTTPs so this is new to us. I have attempted to do this with iRules and guidance from other articles (https://devcentral.f5.com/s/articles/redirects-rewrites-and-app-transfers-via-irules) but the majority of the articles I have found do not seem to achieve what I am looking for.&nbsp;If anyone can offer any guidance or reference articles similar to what I am looking for would be helpful.&nbsp;Thank you very much

dans92 · Answer

I feel like the best way to do this would just be with a DNS CNAME entry pointing newsite.com to Canonical Name internal.domain.newsite.local

This way the client would only see newsite.com in the URL bar but they would be going to what DNS has for internal.domain.newsite.local instead.

tcp-diddy · Answer

Thanks Dan,&nbsp;That's a good idea, but I don't think that is what I am looking for. I don't think I made clear what I am trying to do in my original post. Sorry about that!&nbsp;It seems the customer development team has configured the site binding on the internal node to be the internal URL and not the public URL, so we are looking to have the F5 rewrite the request in transit so when the traffic reaches the end node, it matches to the correct site binding. Then when return traffic goes out, the client does not notice any difference. This would be using SSL and there is no public SSL certificate for the internal domain either, or DNS resolution, which is why we'd want this to be an invisible rewrite.&nbsp;I have looked at doing this with rewrite services in the F5 but as this is a non standard setup I am a bit lost on my new configuration.&nbsp;Thank you

dans92 · Answer

Hmmm... ya that’s a bit more difficult than a CNAME lol that is beyond my level of expertise I think. Would replacing the http header host accomplish what you’re looking for? This is pretty easy to configure with a Local Traffic Policy.

tcp-diddy · Answer

For sure, that is what I am trying now. If I find something that works, i'll post it here.&nbsp;Thank you

tcp-diddy · Answer

ended up completing this with an http host header rewrite via irule&nbsp;when HTTP_REQUEST {&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;if { [HTTP::header host] eq "www.newsite.com" } {&nbsp;&nbsp;&nbsp;&nbsp;&nbsp;HTTP::header replace Host "internal.domain.newsite.local"&nbsp;&nbsp;&nbsp;}&nbsp;&nbsp;}

Forum Discussion

Invisible URL rewrite - external url to internal url

5 Replies

Recent Discussions

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Related Content

Create isolated environment for internal and external networks

Redirecting to an external site when the internal site is down

2 internal server vlans

CSV to Address External Datagroup File

Using F5 for load balancing internal traffic