James_Thomson
Dec 09, 2004Employee
selective re-encryption
I'm trying to have a vip with ssl acceleration enabled accept traffic, inspect it, if it is html, re-encrypt it and send it to a secure serverpool. If it is .gif, just send it to a port 80 pool.
I'm trying something like:
when CLIENTSSL_HANDSHAKE {
if {HTTP::uri ends_with "gif"} {
pool img_pool }
elseif {HTTP::uri ends_with "html" }
then use pool html_secure_pool}
I don't know what to use to re-encrypt the data to the secure server. Also, would I need to wait for HTTP_REQUEST after CLIENTSSL_HANDSHAKE or is that enough?
If I gave the vip a server ssl profile, could I then just parse out the gif's and just leave the rest alone?
Any help would be appreciated.