借助A10 vThunder实现HTTP到HTTPs重定向的3种方式

80到443重定向作为主流企业的必备需求,A10 ADC产品充分展示了灵活性。首先准备好全证书链与key文件,如下图:

将证书链与key文件上传到vThunder中;

首先配置好http与https站点并验证两个站点分别正常访问:

查看https站点是否正常;

方法1:借助302重定向

方法2:借助307重定向

方法3:借助301重定向

when HTTP_REQUEST {
if {[HTTP::host] equals "www.charflower.com"} {
HTTP::respond 301 Location "http://www.charflower.com/[HTTP::uri]"
}
}
ACOS2(NOLICENSE)#sh running-config 
!Current configuration: 1571 bytes      
!Configuration last updated at 06:56:32 CST Tue Apr 7 2020
!Configuration last saved at 05:55:49 CST Tue Apr 7 2020
!64-bit Advanced Core OS (ACOS) version 4.1.4-GR1-P1, build 78 (Mar-28-2019,21:06)
!
multi-config enable 
!
!
system resource-usage nat-pool-addr-count 2000 
!
terminal idle-timeout 60 
!
ip dns primary 10.254.100.10 
!
ip dns suffix abc.com 
!
hostname ACOS2 
!
web-service auto-redirt disable 
web-service gui-timeout-policy idle 60 
!
interface management 
  ip address 192.168.0.4 255.255.255.0 
!
interface ethernet 1 
  enable 
  ip address 192.168.100.254 255.255.255.0 
!
interface ethernet 2 
  enable 
  ip address 172.16.100.254 255.255.255.0 
!       
!
ip nat pool SNAT1-172.16.100.x 172.16.100.50 172.16.100.60 netmask /24 ip-rr 
!
ip nat pool SNAT2-172.16.100.x 172.16.100.65 172.16.100.70 netmask /24 ip-rr 
!
ip nat pool-group SNAT-internal 
  member SNAT1-172.16.100.x 
  member SNAT2-172.16.100.x 
!
slb resource-usage client-ssl-template-count 8192 
slb resource-usage conn-reuse-template-count 4096 
slb resource-usage fast-tcp-template-count 4096 
slb resource-usage fast-udp-template-count 4096 
slb resource-usage http-template-count 4096 
slb resource-usage nat-pool-addr-count 2000 
slb resource-usage persist-cookie-template-count 4096 
slb resource-usage persist-srcip-template-count 4096 
slb resource-usage proxy-template-count 4096 
slb resource-usage real-port-count 16384 
slb resource-usage real-server-count 8192 
slb resource-usage server-ssl-template-count 8192 
slb resource-usage service-group-count 8192 
slb resource-usage stream-template-count 4096 
slb resource-usage virtual-port-count 8192 
slb resource-usage virtual-server-count 4096 
slb resource-usage health-monitor-count 1024 
!
slb server web1 172.16.100.1 
  port 80 tcp 
!       
slb server web2 172.16.100.2 
  port 80 tcp 
!
slb service-group Web1-2 tcp 
  health-check ping 
  member web1 80 
  member web2 80 
!
slb template client-ssl www 
  chain-cert charflower 
  cert charflower 
  key charflower.key 
!
slb template http http-header 
  insert-client-ip X-FORWARDED-FOR 
!
slb template http 307-80to4433-response 
  redirect secure response-code 307 
!
slb virtual-server vs12 172.16.100.100 
  port 80 http 
    name vs12_80_http 
    aflex Rediret1 
    source-nat pool SNAT-internal 
    service-group Web1-2 
    template http http-header 
  port 443 https 
    name vs12_443_https 
    source-nat pool SNAT-internal 
    service-group Web1-2 
    template http http-header 
    template client-ssl www 
!
sflow setting local-collection 
!
sflow collector ip 127.0.0.1 6343 
!
!
end
!Current config commit point for partition 0 is 0 & config mode is classical-mode
ACOS2(NOLICENSE)#
发布日期:作者:
分类:A10 标签: