Products
Solutions
Partners
Support
Company
Try Now
Pulse Secure Community
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Stingray Traffic Manager Reverse Proxy Problem

SOLVED
Go to solution
cage
Not applicable
‎12-30-2013 05:37:PM
‎12-30-2013 05:37:PM

Stingray Traffic Manager Reverse Proxy Problem

In our DMZ network have one Stingray Traffic Manager, We have one Web server in our internal network with http services, The user want from internet also can access this Web site, but for security policy from internet we need use https services, so we use STM do SSL decryption, when finished this seting, from internet we can use https to access this web site, but login the web site found some page can not open, check the page url found still http url, not change to https url.If not enable SSL decryption is working fine.

The web server is SAP NetWeaver Platform, Tests found that can't open and display page is developed by our application team.

Do you have any suggestion for this problem? thanks!

Below is the STM config picture:

11.png

0 Kudos
1 ACCEPTED SOLUTION

Accepted Solutions
jochenmaurer
Contributor
‎01-08-2014 07:33:AM
‎01-08-2014 07:33:AM

Re: Stingray Traffic Manager Reverse Proxy Problem

Hi there,

did i understand the problem correctly? The login does not work, because some of the URLs created are still http, not https?

If yes, you have a bad application (a application should not include the protocol in generated URLs, it is better to have only relative paths generated by the application)

But still, You can have STM rewrite all http-content and replace http with https. trafficscript function http.getResponseBody(); should do the job


$response = http.getResponseBody(); 

if( string.contains( $response,"http://" ) ){

$response = string.regexsub( $response, "http://", "https://", "g" ); }



http.setResponseBody( $reponse );

But this only works for plain html, e.g. if your application uses java-applets with urls inside, this will not work.

Best Regards,

Jochen

View solution in original post

0 Kudos
2 REPLIES 2
felixdpg
Occasional Contributor
‎01-07-2014 03:36:AM
‎01-07-2014 03:36:AM

Re: Stingray Traffic Manager Reverse Proxy Problem

Hi yang:

If you make ssl decryption you have a certificate added in your STM, so, check the scope of this certificate, maybe you have use a wildcard for all of your organization, for example: *.yourdomain.com. Another tip to take in mind is that the users forget to call the webpage in a secure way (https), to prevent this, create a rule that redirect http to https, this article may be usefull for you : https://splash.riverbed.com/message/15200#15200

BR

Felix

0 Kudos
jochenmaurer
Contributor
‎01-08-2014 07:33:AM
‎01-08-2014 07:33:AM

Re: Stingray Traffic Manager Reverse Proxy Problem

Hi there,

did i understand the problem correctly? The login does not work, because some of the URLs created are still http, not https?

If yes, you have a bad application (a application should not include the protocol in generated URLs, it is better to have only relative paths generated by the application)

But still, You can have STM rewrite all http-content and replace http with https. trafficscript function http.getResponseBody(); should do the job


$response = http.getResponseBody(); 

if( string.contains( $response,"http://" ) ){

$response = string.regexsub( $response, "http://", "https://", "g" ); }



http.setResponseBody( $reponse );

But this only works for plain html, e.g. if your application uses java-applets with urls inside, this will not work.

Best Regards,

Jochen

0 Kudos
© 2017 Pulse Secure, LLC. Use of this website assumes acceptance of our Legal Notices and Privacy Policy. Pulse Secure has updated its Privacy Policy effective June 28, 2017.