HTTP Redirect based upon SRC IP Address

Similar Messages

• Http redirects not changing url in address bar

  I'm going crazy trying to fix a major bug in our application. Http
  redirects are not changing the url in the address bar of the latest versions of internet explorer. But this only happens if the redirected page is an xml page with an xslt reference for the browser to do the transformation. Mozilla seems to work fine, but I seem to have encountered a major bug in Internet Explorer. If anybody can help or at least point me in a direction I'd be SO grateful. This doesn't seem to be a java servlet specific issue, but that's what we're using so I thought I'd ask the question here too.
  We have an MVC type framework we developed. For example, if you were to add something to a shopping cart, the url might be:
  http://ecommerce.com/cart/add?sku=54321. In the add servlet, we would add the sku to your shopping cart and then redirect to, let's say,
  http://ecommerce.com/displaycart. I think this is how most MVC frameworks work. And it works great for us.
  The problem began when we started sending XML to the browser with an XSLT stylesheet. So now the browser does the transformations (if the browser is capable of doing them, which we check) instead of the server. This is a major part of our project. One of the reasons we started this.
  The problem is that Internet Explorer no longer updates the url in the
  address bar after a redirect. Mozilla works great though. We haven't
  tested on other xslt capable browsers yet. In the example above, what would happen is after adding something to your shopping cart, the "displaycart" page would be shown but the http://ecommerce.com/cart/add?sku=54321 url would be shown in the address bar. It wouldn't seem to be too big of a deal since everything works. But now all the relative links are messed up. They start from the "cart" directory. So we need absolute links. But that introduces many other problems. We then need to know the host and the parent directories (not as easy as it seems).
  So is there a solution? Is this a big bug that nobody has realized yet (or maybe they have, but my searches don't see it) in internet explorer? Is there a way for the redirected url to appear in the address bar from a browser-based xslt transformation in internet explorer? By the way, I'm testing with the latest version of IE6.0 as of July 7, 2003.
  When testing, redirects work perfect if I do the xslt transformation on the server side and just send plain html to internet explorer. And it works perfect with either serverside or browserside xslt transformations in mozilla.
  Scott Mueller
  AccelerateBiz Incorporated

  As I've been reading in the specs, microsoft, etc, it seems that it's not what's supposed to happen. But the specs are not very specific about this. However, internet explorer DOES always replace the url in the address bar with the redirected url if HTML is being returned from the redirected servlet. As is the case with all other browsers. So, at least, this behavior is the de-facto standard.
  BUT when the redirected to page is an xml page which references an xslt stylesheet.. then, ONLY in internet explorer, the original url is what's shown in the address bar (and, more importantly, what's used as the base url). Regardless of what the links look like or how they're manipulated in the transformed HTML that ends up being shown, I can't seem to make the url in the address bar the redirected url..

• HTTP redirect based on client IP

  Hello,
  Is anyone aware of a method to redirect an HTTP request based on the Client IP using ICM/Web Dispatcher?
  The "icm/HTTP/redirect_" parameter doesn't appear to allow you to use the client IP as a criteria for the redirect, and I have not been able to find any other indication of how this might be accomplished on SMP, SDN, or Online Help.
  The goal of this is to perform a protocol switch and redirect all HTTP requests from a specific IP range to HTTPS.
  thanks!
  John

  Just a thought:
  Have two instances of Web Dispatcher, listening on different ports.
  Split incoming connections to different ports, whichever way is available:
  1. Ask you network team to forward request from one subnet to one port and another subnet to another port.
  2. On Windows server use RRAS
  3. On any server use software routing;
  4. Setup routing appliance before the server.
  Not too elegant, but should work...
  Regards,
  Slava

• CSS redirect based on client IP address?

  We have a number of web servers behind CSS11500. We would like to be able to send an http redirect to a client browser, depending on the client's IP address.
  I had thought this might be possible using ACL but I can't find anything that seems to fit the bill. Can anyone suggest whether this is even possible, and how?

  create a redirect service.
  Then you can use an acl like this :
  clause 10 permit tcp x.x.x.x destination content prefer
  Gilles.

• Redirect based on source IP address????

  I have a site that I don't want our competitors to view! By
  tracking code, I have managed to obtain their source IP addresses.
  After looking around, there is a .php solution to my problem
  but my host is not well suited to .php files (although it does some
  processing).
  My pages are in .shtml (to process css drop-down menus
  correctly) and I understand that this attached code, if put at the
  top of the page before anything else, will work.
  I have managed to get one working
  http://www.donbur.co.uk/gb/newindex.php
  but am having difficulty getting this code to work elsewhere.
  The problem is, when I try to put this code into either a
  template or as an include, it won't process correctly or the page
  won't render at all.
  Do I have to use .php files or can I insert php script into
  an .shtml document.
  Getting really confused now.... HELP

  Thanks for the constructive advice...
  quote:
  >After looking around, there is a .php solution to my
  problem but my host is not well
  >suited to .php files (although it does some processing).
  What does this mean? Does your hosting plan include php
  support or not?
  You can't just put a php script into any page. It needs to be
  a .php page or you need to reconfigure the server to parse other
  pages for php. But if your hosting plan doesn't support php then it
  won't work in any case.
  My host is BT Internet and they claim not to process .php
  files which is why our main .php site is hosted elsewhere; however,
  it seems that, although it has difficulty (to clarify: doesn't
  render) with main full scripts, it does seem to process simple
  <?php echo commands for example.
  It has been suggested on another forum that the .shtml files
  are set to be recognised by .php in the cpanel but our host will
  not do this...
  Our competitors are not particularly smart or up-to-date and
  this would have been reasonably effective; however, I bow to better
  judgement and close this topic.

• Redirect based upon a form entry.

  I'm trying to get one of two pages to load depending on a form entry.  The form consists of one text field (asking for the person's zip code),  If the zip code is found in a master table, I would like them to be directed to one page.  If it is not in the list, I would like them to be directed to another.
  Any advice on how to tackle this issue?  I'm working with .asp in Dreamweaver CS4.
  Thank you in advance from a novice!  -David

  Well, I didn't try that with ADDT, but I think you should:
  1- Create a recordset that queries the zip code column with a Filter set to the form element's data;
  2- If the result is greater than 0 (if my memory is good, you have a Recordset_total in ASP), then it means that it's in the table... so you redirect to the first page... else, you redirect to the second page.
  Hope this helps... If you need more details on how to do this, post back.
  Nelson

• How do I stop Firefox from redirecting me to another site based on my IPS address?

  I work in California. Our corporate offices are in Oklahoma and my desktop computer is set up with an IPS address in OK. When I try to go to the CA website for AAA, Firefox redirects me to the OK website for AAA. How do I stop from being redirected to OK sites when trying to open CA sites?

  hello eajames, sites can show you content and redirect you based on your IP address which will reveal your approximate location - there is not much a browser can do against this...
  http://www.yougetsignal.com/tools/network-location/

• Clean Access HTTP redirect wrong after IP address change

  Hi,
  Wondered if anyone had seen this:
  We have a Clean Access server running in VGW mode for VPN traffic, after a redesign the IP address has changed (the trusted and untrusted are the same).
  Unfortunately when a user logs in it still uses the old IP address in the HTTP redirect, this has been confirmed by looking at the HTML source.
  Apart from that it looks fine, new SSL certificate etc.
  Any ideas apopreciated, thanks.
  Jim.

  For all deployments, if planning to configure the Clean Access Server in Virtual Gateway mode (IB or OOB), do not connect the untrusted interface (eth1) of the standalone CAS or HA-Primary CAS until after you have added the CAS to the CAM from the web admin console. For Virtual Gateway HA-CAS pairs, also do not connect the eth1 interface of the HA-Secondary CAS until after HA configuration is fully complete. Keeping the eth1 interface connected while performing initial installation and configuration of the CAS for Virtual Gateway mode can result in network connectivity issues.
  When setting up a CAS in Virtual Gateway mode, you specify the same IP address for the trusted (eth0) and untrusted (eth1) network interfaces during the initial installation of the CAS via CLI. At this point in the installation, the CAS does not recognize that it is a Virtual Gateway. It will attempt to connect to the network using both interfaces, causing collisions and possible port disabling by the switch. Disconnecting the untrusted interface until after adding the CAS to the CAM in Virtual Gateway mode prevents these connectivity issues. Once the CAS has been added to the CAM in Virtual Gateway mode, you can reconnect the untrusted interface.
  Administrators must use the procedure mentioned in the below URL for correct configuration of a Virtual Gateway Central Deployment:
  http://www.cisco.com/en/US/docs/security/nac/appliance/configuration_guide/418/cas/s_instal.html#wp1045874

• Providing Access based on Client IP Address

  Current Scenario  -
  SAP Portal is accessible directly and via Citrix (VPN).
  Based on the URL alias - we have implemented Desktop Filtering.
  eg if the URL ends with / internet - You get restricted roles
  eg if the URL ends with / intranet - You get wider roles
  In Production, we also have Netscaler Reverse Proxy and HTTPs settings in place for External (outside firewall) access.
  New Requirement (Example) -
  Based on the IP address of the client, determine which subnet it falls under and based on that -
  If used within Citrix - Provide certain roles
  If not used within Citrix - Restricted access / Redirect to a different URL on the redirect server.
  Questions -
  With the current desktop filtering in place based on URL determination and no specific restriction for inside/outside Citrix access -
  1 - Please suggest which would be a good way to crack this? Inside Portal (IP address determination and SAP Logon modification) / Outside Portal (eg Citrix, Network OS Exit, Reverse Proxy etc) based on Best Practise ?
  2 - Not sure if this is relevant : Find IP address of Client with webdybpro (This API works only in Web Dynpro and not PDK) ? I believe tweaking SAP Logon logic can get very painful  and overtly complicated for such scenarios.
  Thanks for your inputs ~ Dhanz

  Vivek,
  On the coding front -
  1 - Will reading the IP address  in the header field x-forwarded-for retrieve right results if reverse proxy is in place ? Wouldnt it retrieve the proxy / load balancer IP instead of Client IP ?
  2 - Also we have HTTPS settings for extranet access - So encrypted data (eg Client IP ) is transferred that the Web Dispatcher cannot manipulate ?
  Please suggest.
  Remember to be polite
  Edited by: Anja Engelhardt on Jan 27, 2012 11:27 AM

• Re-direct based on source ip address

  Dear all,
  i wish to redirect url traffic to another server based on their ip address. We currently have sharepoint server and was hoping to utilise it facilities to redirect to another server. https://www.abc.com to
  http://www.abc.com/def 
  we have iis7 runnin in the backgroup if that help.. Would iis be a better choice? 
  Thanks in advance..
  N DHANRAJ

  Hi Dhanraj,
  I understand that you want to redirect the url from
  https://www.abc.com to http://www.abc.com/def, you can try URL Rewrite rules to achieve this goal.
  Here are some posts about this topic, you can take a look.
  http://stackoverflow.com/questions/22182087/iis-rewrite-rule-to-redirect-specific-domain-url-to-different-url-on-same-domain
  http://social.technet.microsoft.com/wiki/contents/articles/23074.sharepoint-2013-url-rewrite.aspx
  Supportability of Rewrite and Redirects with SharePoint 2007/2010/2013
  More about the IIS redirect, I would recommend you post in IIS forum below, there will be more experts assisting on this issue.
  http://forums.iis.net/t/1153050.aspx?URL+Rewrite+for+SSL+redirection
  Thanks
  Daniel Yang
  TechNet Community Support
  Please remember to mark the replies as answers if they help, and unmark the answers if they provide no help. If you have feedback for TechNet Support, contact
  [email protected]

• ESB Routing service based upon XSD contains reference to localhost

  Hello,
  I've created the following simple ESB scenario and run into some behaviour which I can't explain.
  - Create a ESB project
  - Import a XSD definition file
  - Create a routing service based upon the XSD definition file (Generate WSDL From schemas)
  - Deploy the ESB project to the ESB server (on a different machine)
  So far, so good
  Go to the ESB Console, click on the created Routing Service, go to the Definition tab and click on the Concrete WSDL URL.
  In the service part a 'localhost' reference appears, which results in an error when running the routing service.
  <service name="execute_pptService">
  <port name="__esb_RoutingTest_execute_ppt" binding="tns:__esb_RoutingTest_execute_ppt" />
  <port name="__soap_RoutingTest_execute_ppt" binding="tns:__soap_RoutingTest_execute_ppt">
  <soap:address xmlns:soap="http://schemas.xmlsoap.org/wsdl/soap/"
  location="http://localhost:8888/event/TEST/RoutingTest" />
  </port>
  </service>
  This definition appears in the ..routing..esbsvc file. When I change in this file 'localhost' to the server IP address and redeploy the ESB project, the server IP address is replaced to 'localhost' by JDeveloper.
  What causes this behaviour and how can I avoid it?
  Regards Leon

  I enabled "validate payload at runtime" option in the definition.
  The instance erred out and I got the below payload in the Error tab.
  <actionData xmlns="http://xmlns.oracle.com/bpel/sensor">
  <header>
  <sensor sensorName="ActivitySensor_1" classname="oracle.tip.pc.services.reports.dca.agents.BpelActivitySensorAgent" kind="activity" target="Assign_1" xmlns:pc="http://xmlns.oracle.com/bpel/sensor" xmlns:tns="http://xmlns.oracle.com/BPELProcess1">
  <activityConfig evalTime="completion">
  <variable outputDataType="StatusInformation" outputNamespace="http://www.oracle.com/bpel_esb" target="$jmsInput"/>
  </activityConfig>
  </sensor>
  <instanceId>30014</instanceId>
  <processName>BPELProcess1</processName>
  <processRevision>1.0</processRevision>
  <domain>default</domain>
  <timestamp>2007-11-01T16:27:20.966+05:30</timestamp>
  <midTierInstance>PC-SRGNANAS-IN:8888</midTierInstance>
  </header>
  <payload>
  <activityData>
  <activityType>assign</activityType>
  <evalPoint>completion</evalPoint>
  </activityData>
  <variableData>
  <dataType>2005</dataType>
  <data>
  <StatusInformation xmlns="http://www.oracle.com/bpel_esb">
  <processName>BPELProcess1</processName>
  <timeStamp>2007-11-01T16:27:20</timeStamp>
  </StatusInformation>
  </data>
  <queryName/>
  <target>$jmsInput</target>
  <updaterName>Assign_1</updaterName>
  <updaterType>assign</updaterType>
  </variableData>
  </payload>
  </actionData>
  Thanks again for the response.

• CSS11500 - balancing upon src IP

  Hi all,
  My question is: is it possible and how, to balance upon the src IP address of the client. I mean some of the src addresses (for example: 192.168.100.0/24) are always using service1 and service 2 on VIP, and some others (192.168.200.0/24) service3. As I know, balance and advanced balance cannot do it (this is not configurable algorithm).
  Regards,
  Krzysztof

  Hi Krzysztof
  Yes you can load balance on the source ip address of the client. Here is a link that explains all the possible load balancing alogorithms you can use.
  http://www.cisco.com/en/US/products/hw/contnetw/ps792/products_configuration_guide_chapter09186a00801579f2.html#wp1038118
  HTH

• External Web Authentication - HTTP Redirect or Proxy?

  I've been reading all of the information I can find about the use of authentication of guest users using an external web server, rather than the native portal provided by a WLC. I've looked at the configuration examples and configuiration guides.
  My question is this: when the WLC redirects the client to the external web server, is it a true http redirect (i.e. a http redirect sent to the client) or does the WLC act as a proxy (via its virtual address  - usually 1.1.1.1), altering the http headers as it does when re-directing requests to its internal web portal ?
  This is important as I need to understand if it is the client that has to be able to connect to the external web server, or whether it is the WLC that has to be able to connect to the external web server.
  The WLC for the solution I am working on is in a highly secure DMZ area, so it is imprtant to know which devices need to talk to which.

  So, to be clear, it is the WLC that needs connectivity to the external server or the client device?
  Both devices need to communicate to the external web server.  The WLC will need to communicate with the external server since it will be expecting a return of information from that server to process the l3 authentication.  The client will need to reach it as the WLC is going to redirect it to that site (reason for pre-auth acl). 
  Does the client communicate directly with the external web server, or will it direct its http requests to 1.1.1.1, which will then be proxied by the WLC to the external web server?
  Again this is both; So the client will lookup/resolve a site and initiate some HTTP traffic, so it starts a TCP SYN for to the real web server it is trying to reach, the WLC will see this request; hijack the IP of the destination server and reply back to the client(pretending to be the "internet" server) The WLC redirects the client to it's virtual IP; whether using internal or external web auth.  So the client will arrive at the virtual IP of the WLC; which will then redirect the client to the external web server in your case.  When this happens the WLC has also inserted some information in to the redirect URL on the clients behalf so which the external server will use to send the information it collects (assuming you're using one of our standard external bundles).  The external server will process the client HTTP GET, so as far as "viewing and using" the external web server; the client will make that request directly to the external web server.  The external server, upon submittion of the form on the page, will send the information collected from the client back to the WLC server (which it learned it's IP from the redirect URL).  The authentication of the client will take place at the WLC.
  So in this scenario you need a love triangle between the Client, WLC, and external server.  All will be talking to one another at some point.  Your client needs connectivity to the external server; and your WLC needs connectivity to the external server.
  David W.

• I am able to load some pages from a particular website while other pages from the same site give the error "Firefox has detected that the server is redirecting the request for this address in a way that will never complete."

  I am able to access some directories on the website without any problems while I get the "Firefox has detected that the server is redirecting the request for this address in a way that will never complete." error for other directories of the same site.
  == URL of affected sites ==
  http://www.safelistgrande.com

  Suddenly from yesterday I am getting this error while trying to opening gmail

• Ssrs sum based upon a conditional statement

  In an ssrs 2008 r2 report, I have the following code that totals a transaction amount:
  =sum(cdec(Fields!TransactionAmount.Value))
  Now I need to have different total amounts based upon 'payment type'. The payment_types are either 'check', or 'credit' for credit card. Thus can you show me how to change the code I just listed to sum the amount depending upon the payment type?

  You may wish to follow this thread that is exploring a similar question.
  http://social.msdn.microsoft.com/Forums/sqlserver/en-US/12e2cdf4-1fd7-4f2a-ba12-ff5c4ec01eeb/sum-values-based-on-condition-in-ssrs?forum=sqlreportingservices
  To do this in an SSRS expression just insert an IIf:
  =Sum(IIf(Fields!payment_type.Value = "check",cdec(Fields!TransactionAmount.Value),0))
  =Sum(IIf(Fields!payment_type.Value = "credit",cdec(Fields!TransactionAmount.Value),0))
  In the other thread you will see that sometimes it makes sense to do this kind of work in the dataset since dataset queries run on the datasource and often those systems are robust servers that can crunch and return data very quickly.
  "You will find a fortune, though it will not be the one you seek." -
  Blind Seer, O Brother Where Art Thou
  Please Mark posts as answers or helpful so that others may find the fortune they seek.