12-08-2003 03:17 PM
I don't seem to be able to construct an ssl content rule that allows dilineation by uri. The documentation says to set the rule as follows for ssl:
vip address x.x.x.x
add service abcd
add service defg
application ssl
advanced-balance ssl
protocol tcp
port 443
uri "/*"
active
This works but if I try to change the uri to:
uri "/CSO/html/SignOn.html" the rule stops working.
Is it possible to do this?????
12-09-2003 01:19 AM
That's the nature of SSL.
All traffic is encrypted to avoid people to look at it.
So, the CSS does not see and has no way to see the URL.
With 'url "/*"' it works because it means any URL.
Gilles.
12-09-2003 06:25 AM
Ditto on Gilles' response, however there is a way to do this with additional hardware.
If you use SSL acceleration, Onboard the CSS or externally, you can then use uri rules on the decrypted SSL traffic.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community
