Forum Discussion
Kevin_Stewart
Sep 26, 2013Employee
For HTTP traffic it's pretty straight forward. The client navigates to http://aaa.com, which resolves to a VIP. The VIP looks at the requested host name (aaa.com), looks that up in the data group, and then sends the traffic to the corresponding pool (a bunch of servers listening on port 8010 for example). The VIP does the port translation transparently so the client doesn't deal with the non-standard port. Port 443 is only slightly different in that the HTTPS VIP must have a certificate that can serve all of the host names (wildcard, SAN, or SNI). Otherwise the logic is exactly the same.
Redirecting users from a port 80 request to a port 443 VIP is usually a simple iRule applied to a port 80 VIP:
when HTTP_REQUEST {
HTTP::redirect "https://[HTTP::host][HTTP::uri]"
}