01-26-2010 12:20 AM
hi,
i have one requirment from the customer to force https for web site sections that require authentication
all web site sections that require authentication end with login.aspx
for example:
www.cisco.com/staff/login/login.aspx
www.cisco.com/empl/login/login.aspx
how to force redirection from http to https for any url end with login.aspx
i don't want any user to authenticate using http.
thanks in advance for your help
best regards,
01-28-2010 09:55 AM
Something like:
rserver redirect HTTP-to-HTTPS
webhost-redirection https://%h%p 301
inservice
serverfarm redirect HTTP-to-HTTPS
rserver HTTP-to-HTTPS
inservice
class-map type http loadbalance match-any L7CLASS-REDIRECT-HTTP-to-HTTPS
match http url .*/login.aspx
policy-map type loadbalance first-match L7POLICY-REDIRECT-HTTP-to-HTTPS
class L7CLASS-REDIRECT-HTTP-to-HTTPS
serverfarm HTTP-to-HTTPS
policy-map multi-match L3IngressPolicy
class L4VIP-SOME-VIP-CLASS
loadbalance vip inservice
loadbalance policy L7POLICY-REDIRECT-HTTP-to-HTTPS
loadbalance vip icmp-reply
loadbalance vip advertise active
and then of course having a proper HTTPS policy corresponding with the redirect...
That's how we've got things running anyways...
01-28-2010 10:01 AM
Oh yeah.. and of course
show service detail
Looking for current connections and dropped connections - being your best friend for troubleshooting
Also note, that the capture feature of ACE can be useful too
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: