[f-nsp] http to ssl redirect issues via csw-rule
Ronald Esveld
ronald.esveld at qi.nl
Wed Sep 10 07:45:29 EDT 2008
You should change the csw-policy to:
csw-policy "ssl-portal"
match "portal-to-ssl" redirect "*" "*" ssl
You are already matching on site.sample.com, so redirect all.
Ronald
Met vriendelijke groet, With kind regards,
Ronald Esveld
network engineer
Qi ict
Delftechpark 35-37
Postbus 402, 2600 AK Delft
T : +31 15 888 0 444
F : +31 15 888 0 445
E : mailto:ronald.esveld at qi.nl
I : http://www.qi.nl/
________________________________
Van: foundry-nsp-bounces at puck.nether.net
[mailto:foundry-nsp-bounces at puck.nether.net] Namens Williams, Brian
Verzonden: dinsdag 9 september 2008 18:53
Aan: foundry-nsp at puck.nether.net
Onderwerp: [f-nsp] http to ssl redirect issues via csw-rule
I'm attempting to do a http to ssl redirect for a website (example,
redirect http://site.sample.com to https://site.sample.com) and am not
having much luck doing so with the csw policies / rules. Below is the
snapshot of the config I'm using pertaining to the vip and csw ... does
anyone have any suggestions or tips? Thanks.
csw-rule "portal-to-ssl" header "host" equals "site.sample.com"
csw-policy "ssl-portal"
match "portal-to-ssl" redirect "site.sample.com" "*" ssl
server real web1 192.168.1.1
port http
port http url "HEAD /"
port 81
port 82
server real web2 192.168.1.2
port http
port http url "HEAD /"
port 81
port 82
server virtual vip_web 192.168.0.1
port ssl sticky
port ssl ssl-terminate portal
port http
port http csw-policy "ssl-portal"
port http csw
bind ssl flweb1 81 real-port http flweb2 81 real-port http
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/foundry-nsp/attachments/20080910/52f7fd20/attachment.html>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: image/gif
Size: 5293 bytes
Desc: not available
URL: <https://puck.nether.net/pipermail/foundry-nsp/attachments/20080910/52f7fd20/attachment.gif>
More information about the foundry-nsp
mailing list