Previous Next

• 08-12-2008, 10:29 AM

  lonevvolf Joined on 07-13-2006, 9:22 AM Posts 16

  Major issue with HTTPS termination before IIS Reply Contact I seem to stumbled upon a major issue, that can bring down the entire site, when HTTPS is terminated not by IIS, but by an accelerator box before it gets to IIS.  It seems that when doing redirects in this setup, the rewriter believes the user is accessing the website over port 443, but unsecured in HTTP.  It then makes the redirect target http://sitenamehere.com:443, which will not work on most setups.  Somehow, the rewriter has to be more clever in detecting the current protocol from the RequestUrl.  I unfortunately can't give any further testing on this, though, since I obviously can't leave the website in such a state.

• 08-12-2008, 1:52 PM

  In reply to

  anilr Joined on 05-23-2006, 6:13 PM Redmond, WA Posts 1,236	Re: Major issue with HTTPS termination before IIS Reply Contact Can you let us know what exact rules you are using? Anil Ruia Senior Software Design Engineer IIS Core Server

• 08-13-2008, 4:26 AM

  In reply to

  lonevvolf Joined on 07-13-2006, 9:22 AM Posts 16	Re: Major issue with HTTPS termination before IIS Reply Contact As far as I could find, it happens with any redirect rule.

• 08-18-2008, 11:10 AM

  In reply to

  anilr Joined on 05-23-2006, 6:13 PM Redmond, WA Posts 1,236	Re: Major issue with HTTPS termination before IIS Reply Contact Can you collect failed request tracing for one such request? Anil Ruia Senior Software Design Engineer IIS Core Server

• 08-20-2008, 9:31 AM

  In reply to

  lonevvolf Joined on 07-13-2006, 9:22 AM Posts 16	Re: Major issue with HTTPS termination before IIS Reply Contact Sorry.  As I mentioned, I can't really test it live, and it only happens once the termination occurs on the outside box.