Question : Cisco CSS with SSL . Forcing clients to use httpS, but how do I implement with Apache

Hi folks

I am trying to figure out a way to force users who go to http://www.joesmoke.com be forced to httpS://www.joesmoke.com , but I'm at a lost at how to do that with my current scenario.


Right now, I have the following configuration:

Outside-->CSS-->WebVIP-->Web-->AppVIP-->App using CSS and IBM HTTP (Apache2.0).

My CSS static maps 1 unique outside address (say 12.12.12.12) with a WebVIP. Then in the content rules of the web, they have two webservers. The Webservers are using IBM HTTP Server (basically Apache 2.0) and they are rewriting any http request to the APP VIP. The App vip then points the Weblogic and the rest is history.

My clients want to force people to use SSL. So I went ahead and used another outside address (say 12.12.12.13) and did something similar to what I wrote above, but with port 443, instead of 80. Gave it a unique WebVip different from the 80 config, but used the same AppVip.

Now, I have two unique outside address, 1 pointing to 80 and one pointing to 443.  My idea was that I modified the rewrite rule for port 80 in Apache to point it the outside address for 443. Yes that works, but that means I have two websites, one with the 80 and one with the 443.

There is not a way to group those two together, so I was wondering what I can do in this case?

I hope this was enough information. I can give me a clue as to what to, as this is pretty urgent.

Thank you,
Kit
 

Answer : Cisco CSS with SSL . Forcing clients to use httpS, but how do I implement with Apache

How about doing redirection on the CSS ...

Assuming you have a content entry for incoming on https to VIP 12.12.12.12 already, you should be able to do another for for http:

content joesmoke80
  vip address 12.12.12.12
  protocol TCP
  port 80
  redirect "https://www.joesmoke.com"
  active