Possible to redirect from HTTPS to HTTP behind load-balancer?

ssl load-balancing redirect f5-big-ip
12,521

Yes, the F5 may be intercepting and rewriting the redirect to be HTTPS.

Find the HTTP Profile that is associated with your Virtual Server. What is "Rewrite Redirects" set to? Since you're the developer of the app, you probably want None. (Remember to make a new HTTP profile for your app rather than edit the default one.)

This option is designed to handle redirects from applications that aren't really SSL Offload aware.

There's a good article about this option on DevCentral.

On a related note, why are you redirecting back to HTTP? If your BIG-IP is hardware (not Virtual Edition) then it probably handles 500-2000 SSL TPS depending on licensed modules. What is your traffic load? I'm guessing you're unlikely to be establishing over 500 new SSL connections per second. It could be easier and more secure to keep everything on HTTPS.

Share:
12,521

Related videos on Youtube

Derek Hunziker
Author by

Derek Hunziker

Blog: www.layerworks.com

Updated on September 18, 2022

Comments

  • Derek Hunziker
    Derek Hunziker over 1 year

    I have a basic ASP.NET application that sits behind an F5 load-balancer.

    Incoming SSL requests (over HTTPS) terminate at the load-balancer and all internal communication between the load-balancer and my application servers is unsecure (over HTTP).

    When a unsecure request comes in, my app is able to use Response.Redirect("https://...") to redirect a secure URL with no problems. However, the other direction appears to be impossible - I cannot redirect from HTTPS to HTTP using Response.Redirect() from my application. The URL remains HTTPS for the client and does not change. Could the F5 be preventing the redirect for ever reaching the client?

    Is there any special configuration necessary to let this happen?

  • nothingisnecessary
    nothingisnecessary almost 8 years
    Also note that if asp.net web app is bound to http instead of https using stuff like Response.Redirect("~/folder/page.aspx") will cause IIS to send 302 redirect as http instead of https. For reason that you stated: IIS is not aware of SSL offloading; it thinks it is HTTP and so it acts like it is HTTP, like it should. This is issue to be fixed in F5 configuration.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

How to setup Letsencrypt for Google Cloud Compute Engine load balancer?
Redirect users to the nearest server based on their location without changing url
IIS HTTP to HTTPS relative redirect
Nginx config to proxy pass to external ip and port (https -> http)
Magento HTTPS on all website: urls redirect to homepage
Force HTTPS for specific URL
How can I redirect all pages to https, using .htaccess, with exceptions?
Cloudflare flexible SSL and redirects
Redirect non-www https to www https on apache not working as expected
What's correct htaccess rule to redirect mixed content to HTTPS