4-13
Cisco 11000 Series Secure Content Accelerator Configuration Guide
78-13124-06
Chapter 4 Using the Configuration Manager
Configuring the Device
Enter a URL rewrite rule for the www.mybusiness.com.
(config-ssl-server[myServer])# urlrewrite www.mybusiness1.com
sslport 443 clearport 81
All references that pass through the device to
http://www.mybusiness1.com:81
are rewritten to
https://www.mybusiness1.com
.
To securely rewrite only 30x-series redirects (i.e., 302 or 304) referencing
http:// rather than all instances of http:// (such as those that appear
intentionally in the application data), use the redirectonly option. (This
command must be entered on a single line.)
(config-ssl-server[myServer])# urlrewrite www.mybusiness2.com
sslport 443 clearport 81 redirectonly
5.
A wildcard can be used to specify multiple SSL hosts in the same domain.
(config-ssl-server[myServer])# urlrewrite *.mybusiness3.com
sslport 443 clearport 81
Note
Do not use *.com as a filter. The definition is too broad.
domainName
The domain or file identifier as a domain name, IP
address, or path and file name. An * (asterisk) wild
card character can be used to specify more than one
server in a single domain, e.g., “*.company.com”.
sslport
Keyword identifying the specified port to be used for
SSL traffic.
portid
A port identification for SSL traffic.
clearport
Keyword identifying the specific port to be used for
clear text traffic.
portid
A port identification for clear text traffic.
redirectonly
A keyword is used to indicate that only the
“Location:” field in the HTTP 30x redirect header
should be rewritten. This solves a common problem
with Web servers using insecure HTTP 30x redirects.