NimbostratusHi Everyone,
We have a customer and they have interesting issue on their application side.
When we send a http request to the VIP, firstly related hostname appears in the browser then 2-3 seconds later hostname turns into server internal name which is unwanted case for customer.
Is there any way to prevent this stuation ?
Regards,
MVPIf you open developer tools in the browser do you see a 302 redirect? If you do, what is the value for Location?
CirrocumulusSounds like a redirect by the internal server. You can configure redirect rewrites to take care of that
CumulonimbusThe problem is we don’t know if the server returns the external name in redirect only or in all http response links.
The best solution is to look at the server configuration if you can set the external url. Most of http server support it and it will increase f5 performances instead of irule inspecting all response pages.
MVPCreate a HTTP profile, enable Redirect Rewrites to All.
NimbostratusHi All,
Thanks for you replies. I suspect from the internal server doing this redirection but i do not know exact reason.
I will check more detail and inform you.
Hi Kevin by the way, there is a redirection irule on VIP like ;
if [HTTP::uri] equals "/" do HTTP::redirect "/blabla"
Regards,
NimbostratusIts pretty standard for most appplication to have redirects of some sort. The F5 can remap the destination using that setting in HTTP profile.
NimbostratusHi Kevin, yeah it's maybe from the application but i need to fix this one. From your previous answer, you were mention about Redirect Rewrite but issue is not related to http to https redirect.
NimbostratusIf that does not help you then you can try the following simplified code to solve your problem. This will ensure that all redirects relative. This takes http://mylocal.server.com/anyway?hello=1 and makes it /anyway?hello=1. This means it will not longer change the name of the server in the browser.
when HTTP_REQUEST {
if {[HTTP::status] eq 302} {
if {[HTTP::header Location] starts_with "http"} {
HTTP::header replace Location "/[getfield [HTTP::header Location] {/} 4]"
}
}
}If you're unsure what's being sent back from the backend, run a tcpdump from the command line, and capture to a file (-w option), grabbing the full packet (-s 0 == don't truncate the snap) and then peruse the response either via tcpdump, or if you're more desktop orientated using something like wireshark
Often seeing exactly what is coming back can be a good hint as to why it's doing that
NimbostratusHi,
Here is the full description ;
We have 2 VIPs, first one is http VIP and used for only https redirection works ok. Second one is https and SSL offlading comes here. Also, there is a irule on https VIP to redirect another path comes from client which works ok too ;
when HTTP_REQUEST { if { [HTTP::path] equals "/" } { HTTP::redirect "/sap/bc/ui5_ui5/ui2/ushell/shells/abap/FioriLaunchpad.html" } }
This is the Client, F5 and Server connection ;
Client <-----> F5 (HTTPS, Redirect IRule) <-----> Server (HTTP, 8000)
By the way, this is SAP application.
Some test from browser checking headers ;
CumulonimbusYou provided the real URL, so I tried to look at it and it seems there is no internal or external hostname reference, all URLs are relative.
did you enable the irule I provided?
Do you still have the issue?
NimbostratusHi Stanislas,
Related service is not on production and we will try this one by using hosts file on windows, i will try today and inform you. Many thanks for your
Best regards
NimbostratusHi Stanislas,
Did you mean this irule ;
when HTTP_RESPONSE { if {[HTTP::status] starts_with 30} { if {[HTTP::header Location] starts_with ";} { HTTP::header replace Location "/[join [lrange [split [HTTP::header Location] {/}] 3 end] {/}]" } } }