Forum Discussion
CirrusSSL Bridging and FQDN rewrite Policy
We are trying to deploy a VIP that will do SSL Bridging but also rewrite the fqdn to the server...
So
Client goes to https://www.example.com and is terminated on the F5 VIP and then send the traffic on the server as https://www.myexample.com with the F5 terminating both TLS connections. I have tried several profile combinations, but I see that the traffic going the server as the original domain and not being rewritten.
If this would be easier to do with an iRule I am ok with that as well but have tried to use more policies than iRules recently.
Thanks,
Joe
5 Replies
- Injeyan_Kostas
Nacreous
Hi Joe,
try this
when HTTP_REQUEST { if { [HTTP::host] equals "www.example.com"} { HTTP::header replace Host "www.myexample.com" } } 
jomedusaI tried that iRule and it didn't work, looking at the capture of the traffic to the pool member it still has the original host. Does anything need to be done differently since the is a SSL Bridge?
Thanks,
Joe
- jomedusa
I have it working now the iRule is as follows but I did remove the http proxy profile (I think that was the issue to start with).
when HTTP_REQUEST {
if { [HTTP::header host] equals "dev-devportal-api.XXXX.com"} {
HTTP::header replace Host "dev-devportal-api.YYYY.cloud"
}
}Thanks for your assistance,
Joe
- Injeyan_Kostas
Indeed, I don't see any reason to use http proxy profile on such case.
