Forum Discussion
kona2-9_51980
Nimbostratus
Jun 07, 2012I have decided to split the iRule in to two parts and config is below. HTTP traffic is working with no problems. HTTPS on the other hand, fails with a 400 error if only clientssl profile is selected. If bot ssl proviles serverssl and clientssl are selected i get a reset. Does anyone know if there is a way for me to use the servername portion of the client hello packet? I am not sure if the http::host might not be getting hit. Also, on a side note if I https directly to the server i do get the correct page.
test-port80
10.102.27.237:80
http profile: http
irule : test-vip-80
when HTTP_REQUEST {
switch [TCP::server_port] {
"80" {
switch -glob [string tolower [HTTP::host]] {
"*testa.org" { pool testa.org }
"*testb.org" { pool testb.org }
}
}
}
}
============================================================
test-port443
10.102.27.237:443
http profile: http
clientssl
irule : test-vip-443
when HTTP_REQUEST {
switch [TCP::server_port] {
"443" {
switch -glob [string tolower [HTTP::host]] {
"*testa.org" { pool testa.org-ssl }
"*testb.org" { pool testb.org-ssl }
}
}
}
}