Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5820
Views
0
Helpful
2
Replies

WebVPN - SSL Portal - URL Rewrite

Go to solution
sergio.paganoni
Level 1
Level 1

‎04-12-2012 07:53 AM

Hi,

I'm currently using WebVPN portal to access an internal web application. As I understood the router/firewall make a rewrite of each url by adding following information /PORT/IP_ADDRESS/resource. For example if I access (internally) http://192.168.1.100:81/index.html, from outside (via ssl portal) this will become https://vpn.mydomain.com/81/192.168.1.100/index.html

Now I have the following problem: the web application we are reaching have in allmost AJAX request the root (/) url as base point to do the GET request, this means that if for example the application try to load /images/test.gif it results in giving me the following WRONG get rewrite: https://vpn.mydomain.com/images/test.gif instead of the expected (right) URL https://vpn.mydomain.com/81/192.168.1.100/images/test.gif, this results that the webapplication is not usable from the portal. (the example above with the image is only to explain the problem, most problem happens on doing ajax request with the root url as base for GET request)

How may I overcome this problem?

The only solution I see is:

  • Manually change source code of the application (> 100k line of code, javascript is minimized) = not applicable
  • Using a URL rewrite somewhere (i.e. proxy?!) but I will still have some problem with https (certificate) and probably wont work

Thank you so much

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
vabruno
Level 1
Level 1

‎04-15-2012 04:32 PM

don't think there is a solution for this because the ASA can't rewrite the URL unless the page is refreshed and that is not the case with Ajax application, you may want to try and use smart tunnels for that specific application

Sent from Cisco Technical Support iPad App

View solution in original post

0 Helpful
2 Replies 2

Go to solution
vabruno
Level 1
Level 1

‎04-15-2012 04:32 PM

don't think there is a solution for this because the ASA can't rewrite the URL unless the page is refreshed and that is not the case with Ajax application, you may want to try and use smart tunnels for that specific application

Sent from Cisco Technical Support iPad App

0 Helpful

Go to solution
gabriel.barrios
Level 1
Level 1

‎10-10-2013 01:21 PM

Have you try to do a Proxy Bypass at the ASA?

You will find it at:

Configuration----RemoteAccessVPN---Clientless---Advanced---ProxyBypass

You may use wildcard for your internal website.

Hope it helps

Gabriel

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents