Does the ACE support URL rewrite?

Answered Question
Feb 26th, 2008

Hi - I've searched through the posts on here and it seems to be the case that the ACE doesn't support the URL rewriting feature that the CSM module and the 11500 support, but instead uses redirects.

A customer of mine relies on a command called “url rewrite” which instructs the SSL processor to intercept any “HTTP 302” redirect responses from a web server and “rewrite” any embedded “http://” protocol directives to “https://”

This command is critical to the functionality of SiteMinder and Oracle Single Sign-On as both software technologies rely on HTTP 302 redirects to shuffle the client session to various sign-on services such as the SiteMinder cookie provider.

Can anyone confirm that the ACE doesn't support URL rewrite and uf there are any known workarounds for this?

Many Thanks

I have this problem too.
0 votes
Correct Answer by pknoops about 8 years 9 months ago

Dom,

Yes, that is a bit confusing. Let me try to explain. So my assumtion now is you are running something like this: 3.0(0)A1(6.2)

For the purpose of our conversation, this is considered ACE A1. When someone mentioned 2.0, the code will now be A2 as opposed to the A1 above. This is what 2.0 means.

I am not completely sure as it's not released yet, but the first rev of 2.0 ACE would be 3.0(0)A2(1.0) (note the A2)

Regards

Pete..

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
pknoops Tue, 02/26/2008 - 06:59

Hi,

URL-Rewrite is not available on the ACE until version 2.0 (due out Q1 of

2008 "March timeframe").

Another option is to do a redirect on the ACE which is currently supported.

In your situation, you would need to configure a policy-map for traffic

destined to http:// and then setup a redirect for https://

Regards

Pete..

d-fillmore Wed, 02/27/2008 - 10:35

Thanks Pete - The current version of code for the ACCe is 3.0, how come the new version will be 2.0?

Many Thanks, Dom

Correct Answer
pknoops Wed, 02/27/2008 - 11:48

Dom,

Yes, that is a bit confusing. Let me try to explain. So my assumtion now is you are running something like this: 3.0(0)A1(6.2)

For the purpose of our conversation, this is considered ACE A1. When someone mentioned 2.0, the code will now be A2 as opposed to the A1 above. This is what 2.0 means.

I am not completely sure as it's not released yet, but the first rev of 2.0 ACE would be 3.0(0)A2(1.0) (note the A2)

Regards

Pete..

brianmtaylor5 Thu, 04/17/2008 - 06:43

Does anyone have a configuration example for URL rewrites, particularly for port 80 to port 443 rewrites? I'm looking for the action list, class map, and policy map configurations. Any examples would be great.

Thanks,

Brian

Actions

This Discussion