The Citrix Blog >Tags > secure redirect

Blogs for tag 'secure redirect'

Permalink |

Post to Twitter | Comments (0) | Views (2208) |

02 May 2009 01:11 PM EDT

mod_rewrite to AppExpert - Secure Selected Pages

[ Tags: appexpert , secure page , secure redirect , responder , redirect , rewrite , url rewrite , content switch , apptips , tips , howto , netscaler , apache , mod rewrite , web server , load balancing , load balancer , number 1 load balancer , application delivery , application acceleration , performance , application virtualization , application scalability , ssl offload , tcp multiplexing , caching , compression , site balancer , ssl balancer , website load balancer , application delivery controller , netscaler ]

posted by Craig Ellrod

Secure Selected Pages

The Citrix NetScaler can be placed in front of a webserver farm that is running Apache. The same re-write rules that run on Apache, can be implemented on the Citrix NetScaler.

In situations where you want to make sure that for some selected pages only the secure server is used, the following can be used.
Apache rewrite:

RewriteCond %{SERVER_PORT} !^443$ 
RewriteRule ^/?(page1|page2|page3|page4|page5)$  https://www.example.com/%1 [R,L]

AppExpert rewrite example 1:

Add responder action res_redirect redirect  '"https://www.example.com"+HTTP.REQ.URL' -bypassSafetyCheck yes
Add responder policy pol_redirect '!CLIENT.TCP.DSTPORT.EQ(443)&&HTTP.REQ.URL.REGEX_MATCH(re/page[1-5]/)'  res_redirect
Bind responder global pol_redirect 100 END

AppExpert rewrite example 2:

Add patset pat1
Bind patset pat1 page1
Bind patset pat1 page2
Bind patset pat1 page3
Bind patset pat1 page4
Bind patset pat1 page5
Add responder action res_redirect redirect  '"https://www.example.com"+HTTP.REQ.URL' -bypassSafetyCheck yes
Add responder policy pol_redirect '!CLIENT.TCP.DSTPORT.EQ(443)&&HTTP.REQ.URL.CONTAINS_ANY("pat1")'  res_redirect
Bind responder global pol_redirect 100 END

Tap into the power of AppExpert!