Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
335
Views
0
Helpful
2
Replies

ACE SSL Rewrite

a12288
Level 3
Level 3

‎07-28-2008 10:37 AM

Hi, Gilles.

I am using ACE to terminate https, the backend server needs send http-302 redirect to http, so I would need ssl redirect to change HTTP://server1.com/xx/yy/zz to HTTPS://server1.com/xx/yy/zz.

But it never works, on the client browser side, seems like ACE only retain the URL path, give me only HTTPS://server1.com/.

I am trying to using the following actlist:

action-list type modify http SSL_ZCS_ACTLIST

ssl url rewrite location "zcs2.*"

what I missed? thanks.

Leo

Labels:
0 Helpful
2 Replies 2

sachinga.hcl
Level 4
Level 4

‎07-29-2008 09:28 AM

Hi Leo,

Kindly refer to the following URL

regarding your issue:

http://www.cisco.com/en/US/products/hw/modules/ps2706/products_configuration_example09186a00809c3045.shtml

Need some more information regarding which appliance and which software version you are using to speak more specific regarding your issue.

Hoping to listen soon from you.

Till then

Kind Regards,

Sachinga@hcl.in

0 Helpful

sachinga.hcl
Level 4
Level 4

‎07-29-2008 09:40 AM

HI Leo ,

Kindly try the following command

action-list type modify http urlrewrite

ssl url rewrite location "zcs2.*"

instead of using

action-list type modify http SSL_ZCS_ACTLIST

ssl url rewrite location "zcs2.*"

Because Servers are accepting traffic on port 80. When the server sends a redirect

it is not always sent back to the client as https://.

ACE will rewrite the

location field when it sees http://server1.com/xx/yy/zz and will change it to

https://server1.com/xx/yy/zz before encrypting it back to the client.

0 Helpful
Customers Also Viewed These Support Documents