[isalist] Re: HTTP Redirects

• From: "Thor (Hammer of God)" <thor@xxxxxxxxxxxxxxx>
• To: <isalist@xxxxxxxxxxxxx>
• Date: Fri, 29 Feb 2008 14:09:50 -0800

http://www.ISAserver.org
-------------------------------------------------------

Sorry.  Thought I was replying to Jim personally.

t

> -----Original Message-----
> From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-
> bounce@xxxxxxxxxxxxx] On Behalf Of Thor (Hammer of God)
> Sent: Friday, February 29, 2008 2:04 PM
> To: isalist@xxxxxxxxxxxxx
> Subject: [isalist] Re: HTTP Redirects
> 
> http://www.ISAserver.org
> -------------------------------------------------------
> 
> Thanks.  Was getting a root canal when you returned email.  ug
> t
> 
> > -----Original Message-----
> > From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-
> > bounce@xxxxxxxxxxxxx] On Behalf Of Jim Harrison
> > Sent: Friday, February 29, 2008 6:09 AM
> > To: isalist@xxxxxxxxxxxxx
> > Subject: [isalist] Re: HTTP Redirects
> >
> > http://www.ISAserver.org
> > -------------------------------------------------------
> >
> > You can also specify the vroot in the mapping, so...
> > https://site.domain.tld/path = https://site.domain.tld/path
> >
> > This way, you can limit the changes to a single vroot.
> >
> > -----Original Message-----
> > From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-
> > bounce@xxxxxxxxxxxxx] On Behalf Of Rob Moore
> > Sent: Friday, February 29, 2008 5:21 AM
> > To: isalist@xxxxxxxxxxxxx
> > Subject: [isalist] Re: HTTP Redirects
> >
> > http://www.ISAserver.org
> > -------------------------------------------------------
> >
> > Except we don't want to have it force SSL on all sections of the
> site,
> > only certain directories.  What's more, the server hosts several
> sites,
> > and we don't want to have to set something in ISA every time we
> create
> > a
> > new site.  Is there a way to get ISA to leave 302 responses alone,
> and
> > NOT have it "fix" them?  Or can we write generic link translation
> > rules,
> > similar to the apache rewrite module, to control what parts of the
> > sites
> > are redirected?
> >
> > Thanks,
> > Rob
> >
> > -----Original Message-----
> > From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-
> > bounce@xxxxxxxxxxxxx]
> > On Behalf Of Jim Harrison
> > Sent: Wednesday, February 27, 2008 1:56 PM
> > To: isalist@xxxxxxxxxxxxx
> > Subject: [isalist] Re: HTTP Redirects
> >
> > http://www.ISAserver.org
> > -------------------------------------------------------
> >
> > This is link translation.
> > The user connects to a listener/rule combination that allows
> > http://site.domain.tld and includes link translation.
> > If a link or redirect comes through that says
> https://site.domain.tld,
> > LT will automatically change that to http://site.domain.tld.  This
is
> > what LT is for.
> > You can enter a custom definition that says to change
> > https://site.domain.tld to https://site.domain.tld, but this will
> cause
> > all connections from that site to be redirected to HTTPS.
> > If that's what you want, you're golden.
> >
> > Jim
> >
> > -----Original Message-----
> > From: isalist-bounce@xxxxxxxxxxxxx [mailto:isalist-
> > bounce@xxxxxxxxxxxxx]
> > On Behalf Of Rob Moore
> > Sent: Wednesday, February 27, 2008 10:24 AM
> > To: isalist@xxxxxxxxxxxxx
> > Subject: [isalist] HTTP Redirects
> >
> > Hello all-
> >
> > Using ISA 2006 Standard.
> >
> > We have an Apache server on our network.  We are using the Apache
> > server
> > to add a forced redirect from HTTP to HTTPS for some pages on one of
> > the
> > sites served by that server.  If your browser is on our network,
this
> > works fine.  Apache replies with a 302 status, and a location header
> > that includes https://site.domain.tld/file
> > <https://site.domain.tld/file>  just like it should.  However, if
> your
> > browser is outside our network the reply seems to have been edited
so
> > that the location header now reads http://site.domain.tld/file
> > <http://site.domain.tld/file>  (note the lost 's').  This causes the
> > browser to enter a redirect loop where it tries the unsecured page
> > repeatedly, and then fails. Since the only difference is that the
> > request is going through our ISA server when we're outside the
> network,
> > it seems like the ISA server is responsible for the problem. I'm not
> > even sure how to set the monitoring filter on the ISA server,
though,
> > to
> > show me what's going on.
> >
> > To complicate matters a bit, I don't know how to get the
> > internally-generated certificate off the Apache server and into the
> ISA
> > server. So I published it using the "Publish Non-Web Server
> Protocols"
> > wizard. It was working fine until we started using the Apache server
> to
> > redirect HTTP requests to HTTPS.
> >
> > Is there a way to prevent our ISA server from doing whatever it's
> doing
> > that seems to be updating this response header? Or is there a better
> > approach? (Like, maybe getting the cert off the Apache server and
> into
> > the ISA server so we can publish the site like a normal web site?)
> >
> > Thanks,
> >
> > Rob
> >
> > -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> >
> > Rob Moore
> >
> > Network Manager
> >
> > 215-241-7870
> >
> > Help Desk: 800-500-AFSC
> >
> > ------------------------------------------------------
> > List Archives: //www.freelists.org/archives/isalist/
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> > ISA Server Articles and Tutorials:
> > http://www.isaserver.org/articles_tutorials/
> > ISA Server Blogs: http://blogs.isaserver.org/
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com
> > ------------------------------------------------------
> > To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> > ------------------------------------------------------
> > List Archives: //www.freelists.org/archives/isalist/
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> > ISA Server Articles and Tutorials:
> > http://www.isaserver.org/articles_tutorials/
> > ISA Server Blogs: http://blogs.isaserver.org/
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com
> > ------------------------------------------------------
> > To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
> > Report abuse to listadmin@xxxxxxxxxxxxx
> >
> >
> > ------------------------------------------------------
> > List Archives: //www.freelists.org/archives/isalist/
> > ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> > ISA Server Articles and Tutorials:
> > http://www.isaserver.org/articles_tutorials/
> > ISA Server Blogs: http://blogs.isaserver.org/
> > ------------------------------------------------------
> > Visit TechGenix.com for more information about our other sites:
> > http://www.techgenix.com
> > ------------------------------------------------------
> > To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
> > Report abuse to listadmin@xxxxxxxxxxxxx
> 
> ------------------------------------------------------
> List Archives: //www.freelists.org/archives/isalist/
> ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
> ISA Server Articles and Tutorials:
> http://www.isaserver.org/articles_tutorials/
> ISA Server Blogs: http://blogs.isaserver.org/
> ------------------------------------------------------
> Visit TechGenix.com for more information about our other sites:
> http://www.techgenix.com
> ------------------------------------------------------
> To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
> Report abuse to listadmin@xxxxxxxxxxxxx

------------------------------------------------------
List Archives: //www.freelists.org/archives/isalist/
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server Articles and Tutorials: http://www.isaserver.org/articles_tutorials/
ISA Server Blogs: http://blogs.isaserver.org/
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
To unsubscribe visit http://www.isaserver.org/pages/isalist.asp
Report abuse to listadmin@xxxxxxxxxxxxx

• References:
  • [isalist] HTTP Redirects
    • From: Rob Moore
  • [isalist] Re: HTTP Redirects
    • From: Jim Harrison
  • [isalist] Re: HTTP Redirects
    • From: Rob Moore
  • [isalist] Re: HTTP Redirects
    • From: Jim Harrison
  • [isalist] Re: HTTP Redirects
    • From: Thor (Hammer of God)

Other related posts:

• » [isalist] HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects
• » [isalist] Re: HTTP Redirects

1. Home
2. isalist
3. Archive
4. 02-2008

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---