HTTP redirection with Auth Plugin
Hi Guys,
I am relatively new to the FMS World, so bear with me if this is a silly question.
I have an external service which tells me that a particular stream for a customer cannot be allowed and I need to redirect the URL to some http:// page.
This happens in the E_PLAY Event on the auth plugin. My question is, can the auth plugin redirect the entire page to another HTTP page? I know that with the auth plugin you can rewrite the stream name so that another stream is played, but not sure if it is capable of redirecting the entire page.
If the auth plugin by cannot redirect by itself, will the serverside actionscript be able to do so? I can pass the http:// URL to the server side action script via the notify event.
Please suggest the best way to do this. I am using FMS 3.0
Thanks,
AK
That is odd. It worked for me. Can you paste your entries that are dealing with weblogic? This includes your <IfModule> tag.
So, when you try to hit the url, you get a 404 from Apache?
Eric
"Laurent PAILLARD" <[email protected]> wrote in message news:[email protected]..
Same problem. Apache still handles the request and does not proxy it.
"Eric Gross" <[email protected]> a écrit dans le message news: 3c61876c$[email protected]..
I hope you mean the Apache plugin and not the isapi plugin.
Try this:
<Location /*/servlets>
SetHandler weblogic-handler
</Location>
Regards,
Eric
"Laurent PAILLARD" <[email protected]> wrote in message news:[email protected]..
System :
Solaris 8
Weblogic 6.1 SP2
Apache 1.3.19 with weblogic ISAPI plugin
For performance purposes, we want to separate static content from our web application. We deploy a pipo.ear with a pipo.war file inside for Weblogic and we unjar the war file in a '/pipo' directory in the HTTP server document Root.
To redirect JSP files there are no problems. The problems occur with servlets. We decided to register all our servlets in web.xml with a 'servlets/' prefixe so that Apache should redirect requests with it.
All our HTTP requests became :
http://www.myweb.com/pipo/servlets/myServlet
The problem is that ISAPI plug-in never proxy servlet requests to Weblogic. It only works when '/servlets' prefixe is placed just behind the domain name such as http://www.myweb.com/servlets/* and never with http://www.myWeb.com/*/servlets/*.
I hope it's just a problem of configuration with Apache. I've already tried :
<Location */servlets*>
SetHandler weblogic-handler
</Location>
but nothing changed. We don't have such problem with NSAPI plugin for iPlanet but as we must use Apache ...
[att1.html]
Similar Messages
-
HTTP Redirect with Global Load Balancing
I've seen a lot of documentation about redirects and what I am trying to do seems simple enough yet I can't get it to work. Here is a summary:
We have two CSSs in different data centers with load balancing in a roundrobin fashion.
User types www.test.com:9086/test.html
User hits one of the CSSes configured to respond to www.test.com, CSS1 and CSS2.
If CSS1 gets the request, it should redirect request to server1:9086/test.html
If CSS2 gets the request, it should redirect request to server2:9086/test.html
Here is a sample of one of the CSSes:
content vTEST
dnsbalance roundrobin
add dns www.test.com
url "/*"
protocol tcp
port 9086
vip address 192.168.3.135
add service rTEST
active
service rTEST
protocol tcp
port 9086
type redirect
keepalive type none
ip address 2.2.2.2
redirect-string "server1:9086/test.html"
active
I've seen a lot of example of using HTTP Redirects, but none of them touch on using global load balancing as we are trying to accomplish.
Now, if I type in a browser:
http://www.test.com:9086/test.html
it fails. Why? because the CSS returns back an IP of 2.2.2.2 for www.test.com, which isn't a real IP address (this is by design). If I type:
http://192.168.3.135:9086/test.html
it works because it successfully redirects to:
http://server1:9086/test.html
because it is going directly against the VIP and redirecting as it should.
So the redirect function we know is working on the CSS as expected. However, the problem is this:
When I ping www.test.com I should get back the VIP address of the content rule (192.168.3.135) and I do UNTIL I ADD THE REDIRECT TYPE to the service. Once I do that if I ping www.test.com I will get back 2.2.2.2. Somehow once the redirect is added the IP address of the service (2.2.2.2) is returned instead of the content VIP (192.168.3.135). That shouldn't happen.
I hope this makes sense and any help would be greatly appreciated!!!I think what you want to do is explained at :
http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_configuration_example09186a0080094068.shtml
For your information, you should also look at this solution :
http://www.cisco.com/en/US/products/hw/contnetw/ps789/products_configuration_example09186a00801dcd75.shtml
Regards,
Gilles. -
Problem we are having:
A client opens an HTTPS connection to a CSM with SSL offload to SSL module. The decrypted clear HTTP request hits the IIS server and is redirected (301).
The client gets an HTTP redirect and not an HTTPS redirect.
The reason for the 301 redirect is the IIS server does not have a physical resource but rather a virtual directory so it issues a 301 and adds a /. eg https://www.cisco.com/tech is redirected to https://www.cisco.com/tech/ in a working situation.look for the urlrewrite command in order to change HTTP into HTTPS.
Regards,
Gilles. -
I purchased 2 packages of gems for skylanders and only received 1 package. Got email receipts and tried to report problem with link in email on my ipad2 and it keeps coming up with to many https redirects. Can anyone help? Just want my gems :).
Contact iTunes Customer Service and request assistance
Use this Link > Apple Support iTunes Store Contact -
Logs *FILLED* with "too many HTTP redirects".
as far as i can tell... this isn't causing an actual issue with any pages.
but my Console log is literally filled with :
*7/29/08 4:03:59 PM servermgrd[40] servermgr_web: Request for status failed: Error Domain=NSURLErrorDomain Code=-1007 UserInfo=0xae42540 "too many HTTP redirects". Admin Web graphs may be inaccurate.*
literally non-stop all day long. doesn't seem to be related to server load / traffic at all really. timing works out to roughly every 1 minute (very slight drift)... i get 2 or 3 entries. sometimes with maybe a 10 second gap in the "groups".
example of the "groups" :
7/29/08 4:19:49 PM
7/29/08 4:19:58 PM
7/29/08 4:19:58 PM
7/29/08 4:20:49 PM
7/29/08 4:20:58 PM
7/29/08 4:20:58 PM
7/29/08 4:21:49 PM
7/29/08 4:21:59 PM
7/29/08 4:21:59 PM
7/29/08 4:22:49 PM
7/29/08 4:23:00 PM
7/29/08 4:23:00 PM
it is getting very annoying obviously.
seeing the word "redirect" i did the obvious thing and disabled every single redirect i had on the entire site... including all subdomains. no change.
checked the master httpd.conf and the "sites" .conf files as well for anything else odd or redirect-ish looking. nothing.
since the timing is so regular... i can't really think what it might be.
one symptom i DO KNOW OF... is that the Server Admin app will not display the logs while the server is actively running. turn the server OFF ... shows the logs in the Log tab... turn server ON... that tab goes empty.
most likely related.
the logs are being written though. since i tail them just fine and see real-time activity.
i turned OFF all logging... error still shows up.
so as far as i can tell... not related to actual "Redirects"... not related to my disappearing log tab symptom...
any ideas?
IIRC this did NOT happen until migrating to Apache 2.
thanks.
zeb./cat /etc/resolv.conf
{quote}
nameserver 209.165.164.3{quote}
sudo changeip -checkhostname
{quote}
Primary address = 209.165.164.4
Current HostName = www.arcus.org
The DNS hostname is not available, please repair DNS and re-run this tool.
{quote}
and i get...
{quote}
host www.arcus.org
www.arcus.org has address 209.165.164.4
{quote}
and subdomains show up right as well...
{quote}
host nps.arcus.org
nps.arcus.org is an alias for www.arcus.org.
www.arcus.org has address 209.165.164.4
{quote}
i guess i do get make double PTR records back from Network Utility... have www.arcus.org as an A and arcus.org as an A. should the latter maybe be a CNAME like the other (sub-)domains?
{quote}
4.164.165.209.in-addr.arpa. 86400 IN PTR www.arcus.org.
4.164.165.209.in-addr.arpa. 86400 IN PTR arcus.org.
164.165.209.in-addr.arpa. 86400 IN NS ns1.arcus.org.
ns1.arcus.org. 7200 IN A 209.165.164.3
{quote}
could that be the problem?
another server is set-up pretty much identical to this one (other than the content and it has a CMS) with the same DNS set-up more or less. (no subdomains. but the double A like this one) and it doesn't have the same error. at all.
though... it also has functioning web graphs and logs in it's Server Admin.
thanks. -
Local Director http probes with URLs and http redirect mode
I am trying to configure http probes on my Local director 430 running 4.2.3
I am using http redirect mode so the Virtual is bound to URLs not REALs with are linked to DIPs which are bound to REALs. So far the probes seem to not actually do anything. Does anyone know if the probes are compatible with URL redirect loadbalancing. And if so how one would go about configuring it.
Thanks for your help.keepalive can be used for the probe notification in this case.
Check the following url for details.
http://www.cisco.com/univercd/cc/td/doc/product/webscale/css/bsccfggd/services.htm#xtocid727448 -
Https redirection issue for Wireless Guest CWA - ISE 1.3
Our Setup is
ISE 1.3 (Patch level 2) running on ACS 1121
2 nodes clustered with Admin, monitoring, policy service enabled ( Primary and Secondary ).
Configured SSID Guest for Centralized web authentication with ISE.
We have issues in web redirection with chrome . It is not redirecting to the ISE page but rather showing " Page cannot be displayed".
By default chrome is pointing to https. For example if we type https://google.com it is not redirecting to ISE page. But when I specify the same as http://google.com it works.
There is no issue with IE, Firefox as it is redirecting to ISE page with default https and i can see it is hitting our rule.
Please advice.Hi Neno
They are using a third party certificate (digi cert) for client auth. They have confirmed even if they use a self-signed-cert the result is same.
So basically none of the https page is not loading. If we manually browse some https site from Firefox, IE the result is same showing " page cannot be displayed".
Redirection to https is the problem which i have never faced with my other customer. This is the upgraded version of ISE from 1.2 to 1.3. -
Enable WebAuth on WLC to intercept https (or https redirection) for authentication
Hi all
My company is using WLC with Guest access feature, and use Layer 3 security authentication to permit only Guests who provided valid user/password to access.
But we met a issue that, when guests connect to Guest SSID successful, on PC they have to open web browser and access to 1 website by http, after that WLC will intercept and redirect to authentication page.
If customer access to https (as google, gmail, ...) WLC cannot intercept and redirect to authentication. Because almost customers access to https://google.com at first by their habit.
On my firewall, I can do intercept by both http and https, so I wonder on WLC I can enable intercepting and redirecting to authentication of https also
If possible, please advice us how to enable this feature.
Regards
Hai Dao TuanThanks all
I also just found a link that mentions about this case clearly and commands to enable it
https://supportforums.cisco.com/document/12398536/understanding-https-redirect-over-web-auth
(WLC)> config wlan security web-auth enable <wlan-id>
(WLC)> config network web-auth https-redirect enable -
Server side redirect with 4.5.1 and Netscape Enterprise Server
Is it possible to have a servlet running under WL 4.5.1 to perform a server
side redirect ala CGI?
Here's my config:
web server: Netscape Enterprise Server 3.6 on solaris, with weblogic
plugin
servlet runner: WL 4.5.1 on different host from ES.
Here's what I want to happen:
1) HTTP GET from browser to enterprise server
2) forwarded by plugin to servlet
3) servlet logs some activity to an application log file, and sends a
server side redirect to enterprise server
4) Enterprise server returns the file identified by the rediect directly
to the client.
This is possible with enterprise server and CGI, because the ES CGI code
checks the return stream from the CGI program for "Location: <some url>". If
it see's that, it tries to locally resolve that URL as the client had asked
directly for that URL. I think this would only be possible with WL if the WL
NSAPI plug in supported a server side redirect feature. Anyone know status
of that? Or might ES support something like this depending on the order of
the objects in obj.conf?
Here's what I've tried in the servlet:
res.setHeader("Location:", location);
res.setContentType("magnus-internal/redirect");
res.setStatus(302);
This just sends an HTTP tempoary new location to the client for a client
side redirect. Client side redirect is not desirable because it doubles the
HTTP traffic.
Another option would be to read the file I want to redirect to from inside
the servlet and return it from the servlet, but that is not desirable
because I want to have ES serve the file - thats it's job, it caches, less
network traffic (between our servers), etc.
Server side redirect is very useful feature and not that uncommon for web
applications, so if WL does not support it now, I will probably put in a new
feature request.
Thanks for your help
Mark Johnson.
Why not just use the proxy servlet to redirect to your netscape server? That
does it on the server side!
-russell
Mark Johnson wrote:
> I belive that sendRedirect performs a client side rediret, not a server
> side redirect.
>
> Guy Tal <[email protected]> wrote in message
> news:[email protected]...
> > public void doGet(HttpServletRequest req, HttpServletResponse res) ...
> > ...
> > res.sendRedirect("http://destination");
> > ...
> >
> > Guy
> >
> > Mark Johnson <[email protected]> wrote:
> >
> > > Is it possible to have a servlet running under WL 4.5.1 to perform a
> server
> > > side redirect ala CGI?
> >
> > > Here's my config:
> > > web server: Netscape Enterprise Server 3.6 on solaris, with weblogic
> > > plugin
> > > servlet runner: WL 4.5.1 on different host from ES.
> >
> > > Here's what I want to happen:
> > > 1) HTTP GET from browser to enterprise server
> > > 2) forwarded by plugin to servlet
> > > 3) servlet logs some activity to an application log file, and sends
> a
> > > server side redirect to enterprise server
> > > 4) Enterprise server returns the file identified by the rediect
> directly
> > > to the client.
> >
> > > This is possible with enterprise server and CGI, because the ES CGI code
> > > checks the return stream from the CGI program for "Location: <some
> url>". If
> > > it see's that, it tries to locally resolve that URL as the client had
> asked
> > > directly for that URL. I think this would only be possible with WL if
> the WL
> > > NSAPI plug in supported a server side redirect feature. Anyone know
> status
> > > of that? Or might ES support something like this depending on the order
> of
> > > the objects in obj.conf?
> >
> > > Here's what I've tried in the servlet:
> > > res.setHeader("Location:", location);
> > > res.setContentType("magnus-internal/redirect");
> > > res.setStatus(302);
> >
> > > This just sends an HTTP tempoary new location to the client for a client
> > > side redirect. Client side redirect is not desirable because it doubles
> the
> > > HTTP traffic.
> >
> > > Another option would be to read the file I want to redirect to from
> inside
> > > the servlet and return it from the servlet, but that is not desirable
> > > because I want to have ES serve the file - thats it's job, it caches,
> less
> > > network traffic (between our servers), etc.
> >
> > > Server side redirect is very useful feature and not that uncommon for
> web
> > > applications, so if WL does not support it now, I will probably put in a
> new
> > > feature request.
> >
> >
> > > Thanks for your help
> >
> > > Mark Johnson.
> >
> >
> >
> >
> >
> >
> >
> >
Russell Castagnaro
Chief Mentor
SyncTank Solutions
http://www.synctank.com
Earth is the cradle of mankind; one does not remain in the cradle forever
-Tsiolkovsky
-
I am using the latest version of the IIS plugin for Weblogic (build: Apr 14 2002
17:53:13)
It seems that the ISAPI Filter (iisforward.dll) does not forward all http POSTs
- however it does seem to work fine for http GET's.
We have configured the plugin (you will see the attached debug dump) to forward
all calls on "/weblogic". If we perform http GET's on such a URL (using IE) everything
works fine - and the call is routed to Weblogic.
When we make a SOAP call using our C++ client, (a http POST) through the IIS plugin
we get a 405 error. If we artificially add the ".wlforward" extension on the context
URL (in our C++ client ) then it is forwarded correctly to weblogic by the Application
Extension (iisproxy.dll) - so the problem lies with the ISAPI filter. Also, if
we remove the ISAPI filter from IIS, we get the same 405 error - which confirms
that the ISAPI filter is not catching the POST's.
More puzzling, however, is that the SOAP requests from our Java SOAP client (using
WLS SOAP) works fine.
The problem must have something to do with the difference in structure of the
POSTS.
Normally, I would attach the logs/config in a zip file - but that seems broken
at the moment. Instead they are all pasted in below.....
-Nick
Successful POST http header:
POST /weblogic/webservice/BondInstrumentService HTTP/1.0
Host: localhost:8080
Connection: Keep-Alive
Content-Length: 1965
Content-Type: text/xml; charset=utf-8
SOAPAction: ""
Authorization: Basic c3lzdGVtOnBhc3N3b3Jk
UNSuccessful POST http header:
POST /weblogic/webservice/BondInstrumentService HTTP/1.0
SOAPAction: ""
Content-Type: text/xml
Connection: close
Content-Length: 1670
IIS 405 Response:
HTTP/1.1 405 Method not allowed
Server: Microsoft-IIS/5.0
Date: Thu, 25 Jul 2002 14:28:52 GMT
Allow: OPTIONS, TRACE, GET, HEAD
Content-Length: 3126
Content-Type: text/html
IIS Plugin Config:
Properties loaded from path: 'D:\Inetpub\WeblogicPlugin\iisproxy.ini'
Query String: '__WebLogicBridgeConfig'
General Server List:
Host: 'localhost' Port: 7001 Status: OK
ConnectRetrySecs: '2'
ConnectTimeoutSecs: '10'
CookieName: 'JSESSIONID'
Debug: '12'
DebugConfigInfo: 'ON'
DefaultFileName: ''
DynamicServerList: 'ON'
ErrorPage: ''
FileCaching: 'ON'
HungServerRecoverSecs: '300'
Idempotent: 'OFF'
KeepAliveEnabled: 'ON'
KeepAliveSecs: '30'
PathPrepend: ''
PathTrim: '/weblogic'
MaxSkips: '10'
MaxPostSize: '-1'
SecureProxy: 'OFF'
WLLogFile: 'D:\Inetpub\WeblogicPlugin\iisPlugin.log'
WLProxySSL: 'OFF'
Runtime statistics:
requests: 1
successful requests: 1
Exception objects created: 0
Exception Objects deleted: 0
URL Objects created: 1
URL Objects deleted: 1
connections recycled: 0
UNKNOWN_ERROR_CODE exceptions: 0
CONNECTION_REFUSED exceptions: 0
CONNECTION_TIMEOUT exceptions: 0
READ_ERROR exceptions: 0
WRITE_ERROR exceptions: 0
READ_TIMEOUT exceptions: 0
WRITE_TIMEOUT exceptions: 0
UNKNOWN_HOST exceptions: 0
NO_RESOURCES exceptions: 0
PROTOCOL_ERROR exceptions: 0
CONFIG_ERROR exceptions: 0
FAILOVER_REQUIRED exceptions: 0
Build date/time: Apr 14 2002 17:53:13Doh. :< I hope you can get someone here from the BEA guys/gals to help out.
I'm outside of my league at this point. Sorry about that. Good luck.
"Nick Minutello" <[email protected]> wrote
in message news:[email protected]...
>
>
Thanks.
Sadly, my IIS configuration is correct. The plugin seems to work fine if Ijust
use my browser (http GET) for either forward-by-extension (*.jsp) orforward-by-path
(/weblogic/*).
However, there seems to be a problem when I use SOAP (http POST). For somereason,
when I use my C++ SOAP client (using WASP), then the ISAPI filter (the onethat
generates the .wlforward on the URL) doesnt modify the URL - hence the403...
If I use my java client.... everything is fine. Comparing the two httppackets,
I dont see anything obviously wrong - but something is making the WLSplugin choke.
>
Cheers,
Nick
"PHenry" <[RemoveBeforeSending][email protected]> wrote:
Howdy. I had a similar problem. I'm not a BEA support person, but maybe
I
might be able to help. If not, at least someone's listening. :>
Did you add the .jsp AND the .wlforward in the path redirection under
your
web app in IIS? I read the instructions thoroughly (or so I thought),
and I
wasn't able to get the POST to work. :< But as I reread the
instructions,
I
had put in the .jsp (is it under Home Directory, Configuration I think?),
and I put in the ISAPI dll, but I didn't put in the .wlforward (in with
the
..jsp). Once I did that, and restarted the box, all was good! :>
That might help. And if not, at least one of the BEA people have one
less
thing to try. Good luck.
"Nick Minutello" <[email protected]>
wrote
in message news:[email protected]...
I am using the latest version of the IIS plugin for Weblogic (build:Apr
14 2002
17:53:13)
It seems that the ISAPI Filter (iisforward.dll) does not forward allhttp
POSTs
- however it does seem to work fine for http GET's.
We have configured the plugin (you will see the attached debug dump)to
forward
all calls on "/weblogic". If we perform http GET's on such a URL (usingIE) everything
works fine - and the call is routed to Weblogic.
When we make a SOAP call using our C++ client, (a http POST) throughthe
IIS plugin
we get a 405 error. If we artificially add the ".wlforward" extensionon
the context
URL (in our C++ client ) then it is forwarded correctly to weblogicby the
Application
Extension (iisproxy.dll) - so the problem lies with the ISAPI filter.Also, if
we remove the ISAPI filter from IIS, we get the same 405 error -which
confirms
that the ISAPI filter is not catching the POST's.
More puzzling, however, is that the SOAP requests from our Java SOAPclient (using
WLS SOAP) works fine.
The problem must have something to do with the difference in structureof
the
POSTS.
Normally, I would attach the logs/config in a zip file - but that seemsbroken
at the moment. Instead they are all pasted in below.....
-Nick
Successful POST http header:
POST /weblogic/webservice/BondInstrumentService HTTP/1.0
Host: localhost:8080
Connection: Keep-Alive
Content-Length: 1965
Content-Type: text/xml; charset=utf-8
SOAPAction: ""
Authorization: Basic c3lzdGVtOnBhc3N3b3Jk
UNSuccessful POST http header:
POST /weblogic/webservice/BondInstrumentService HTTP/1.0
SOAPAction: ""
Content-Type: text/xml
Connection: close
Content-Length: 1670
IIS 405 Response:
HTTP/1.1 405 Method not allowed
Server: Microsoft-IIS/5.0
Date: Thu, 25 Jul 2002 14:28:52 GMT
Allow: OPTIONS, TRACE, GET, HEAD
Content-Length: 3126
Content-Type: text/html
IIS Plugin Config:
Properties loaded from path: 'D:\Inetpub\WeblogicPlugin\iisproxy.ini'
Query String: '__WebLogicBridgeConfig'
General Server List:
Host: 'localhost' Port: 7001 Status: OK
ConnectRetrySecs: '2'
ConnectTimeoutSecs: '10'
CookieName: 'JSESSIONID'
Debug: '12'
DebugConfigInfo: 'ON'
DefaultFileName: ''
DynamicServerList: 'ON'
ErrorPage: ''
FileCaching: 'ON'
HungServerRecoverSecs: '300'
Idempotent: 'OFF'
KeepAliveEnabled: 'ON'
KeepAliveSecs: '30'
PathPrepend: ''
PathTrim: '/weblogic'
MaxSkips: '10'
MaxPostSize: '-1'
SecureProxy: 'OFF'
WLLogFile: 'D:\Inetpub\WeblogicPlugin\iisPlugin.log'
WLProxySSL: 'OFF'
Runtime statistics:
requests: 1
successful requests: 1
Exception objects created: 0
Exception Objects deleted: 0
URL Objects created: 1
URL Objects deleted: 1
connections recycled: 0
UNKNOWN_ERROR_CODE exceptions: 0
CONNECTION_REFUSED exceptions: 0
CONNECTION_TIMEOUT exceptions: 0
READ_ERROR exceptions: 0
WRITE_ERROR exceptions: 0
READ_TIMEOUT exceptions: 0
WRITE_TIMEOUT exceptions: 0
UNKNOWN_HOST exceptions: 0
NO_RESOURCES exceptions: 0
PROTOCOL_ERROR exceptions: 0
CONFIG_ERROR exceptions: 0
FAILOVER_REQUIRED exceptions: 0
Build date/time: Apr 14 2002 17:53:13 -
External Web Authentication - HTTP Redirect or Proxy?
I've been reading all of the information I can find about the use of authentication of guest users using an external web server, rather than the native portal provided by a WLC. I've looked at the configuration examples and configuiration guides.
My question is this: when the WLC redirects the client to the external web server, is it a true http redirect (i.e. a http redirect sent to the client) or does the WLC act as a proxy (via its virtual address - usually 1.1.1.1), altering the http headers as it does when re-directing requests to its internal web portal ?
This is important as I need to understand if it is the client that has to be able to connect to the external web server, or whether it is the WLC that has to be able to connect to the external web server.
The WLC for the solution I am working on is in a highly secure DMZ area, so it is imprtant to know which devices need to talk to which.So, to be clear, it is the WLC that needs connectivity to the external server or the client device?
Both devices need to communicate to the external web server. The WLC will need to communicate with the external server since it will be expecting a return of information from that server to process the l3 authentication. The client will need to reach it as the WLC is going to redirect it to that site (reason for pre-auth acl).
Does the client communicate directly with the external web server, or will it direct its http requests to 1.1.1.1, which will then be proxied by the WLC to the external web server?
Again this is both; So the client will lookup/resolve a site and initiate some HTTP traffic, so it starts a TCP SYN for to the real web server it is trying to reach, the WLC will see this request; hijack the IP of the destination server and reply back to the client(pretending to be the "internet" server) The WLC redirects the client to it's virtual IP; whether using internal or external web auth. So the client will arrive at the virtual IP of the WLC; which will then redirect the client to the external web server in your case. When this happens the WLC has also inserted some information in to the redirect URL on the clients behalf so which the external server will use to send the information it collects (assuming you're using one of our standard external bundles). The external server will process the client HTTP GET, so as far as "viewing and using" the external web server; the client will make that request directly to the external web server. The external server, upon submittion of the form on the page, will send the information collected from the client back to the WLC server (which it learned it's IP from the redirect URL). The authentication of the client will take place at the WLC.
So in this scenario you need a love triangle between the Client, WLC, and external server. All will be talking to one another at some point. Your client needs connectivity to the external server; and your WLC needs connectivity to the external server.
David W. -
SharePoint public facing site does not open in sharepoint designer after giving http redirect in IIS
I have a public facing sharepoint site
We gave http redirect in IIS due to which I am unable to open the site in SharePoint Designer and gives error message site not found in webserver.
If i revert back the settings (remove the http redirect link) i m able to open the site in designer.Please let me know how can I resolve the issue in opening site in SharePoint designer after http redirect setting done in IISLooks like an AAM issue. What URL of the site you are trying to open with designer and what are your AAM settings?
Ronald Bruinsma - Independent SharePoint Consultant - iDocs.info - The Netherlands
Ronald I got the same issue here is my info:
sharepoint site: http://<servername>/sites/mycompany
<ServerIP>
Default
http://servername
<Servername>
Default
http://servername
http://contoso.mycompany.com
Extranet
http://contoso.mycompany.com
In IIS webapp 80. http redirect:
redirect requests to this destination is checked: http://contoso.mycompany.com/sites/mycompany
can you help me? thanks -
I am having a problem getting into the App Store on my iPhone since the recent update, I have a 4s and it appears the feature tab is not working. When I try to go into the feature tab in the App Store I get a message "too many HTTP redirects" ?... Does anyone now hoe to fix this issue, the other tabs are working okay and everything is working on my iPad ?
Look at iOS Troubleshooting Wi-Fi networks and connections http://support.apple.com/kb/TS1398
iPad: Issues connecting to Wi-Fi networks http://support.apple.com/kb/ts3304
iOS: Recommended settings for Wi-Fi routers and access points http://support.apple.com/kb/HT4199
Additional things to try.
Try this first. Turn Off your iPad. Then turn Off (disconnect power cord for 30 seconds or longer) the wireless router & then back On. Now boot your iPad. Hopefully it will see the WiFi.
Go to Settings>Wi-Fi and turn Off. Then while at Settings>Wi-Fi, turn back On and chose a Network.
Change the channel on your wireless router (Auto is best). Instructions at http://macintoshhowto.com/advanced/how-to-get-a-good-range-on-your-wireless-netw ork.html
Another thing to try - Go into your router security settings and change from WEP to WPA with AES.
How to Quickly Fix iPad 3 Wi-Fi Reception Problems
http://osxdaily.com/2012/03/21/fix-new-ipad-3-wi-fi-reception-problems/
If none of the above suggestions work, look at this link.
iPad Wi-Fi Problems: Comprehensive List of Fixes
http://appletoolbox.com/2010/04/ipad-wi-fi-problems-comprehensive-list-of-fixes/
Fix iPad Wifi Connection and Signal Issues http://www.youtube.com/watch?v=uwWtIG5jUxE
Fix Slow WiFi Issue https://discussions.apple.com/thread/2398063?start=60&tstart=0
Unable to Connect After iOS Update - saw this solution on another post.
https://discussions.apple.com/thread/4010130
Note - When troubleshooting wifi connection problems, don't hold your iPad by hand. There have been a few reports that holding the iPad by hand, seems to attenuate the wifi signal.
~~~~~~~~~~~~~~~
If any of the above solutions work, please post back what solved your problem. It will help others with the same problem.
Cheers, Tom -
I run Windows 7. I downloaded Firefox 6.0 for Windows which resulted in the following which I cannot fix:
"I had Firefix, however I downloaded the newest Firefox along with all plugins. Now when I click in the desktop icon firefox refuses to open my default webpage. Why?....How do I fix this"
I can go to internet explorer or AOL and it opens right up to my homepage but not when I click on Firefox.That problem can be caused by the Yahoo! Toolbar that extents too much downwards and covers the top part of the browser window and thus makes links in that part of the screen not clickable.
*https://support.mozilla.com/kb/Troubleshooting+extensions+and+themes
Start Firefox in <u>[[Safe Mode]]</u> to check if one of the extensions or if hardware acceleration is causing the problem (switch to the DEFAULT theme: Firefox (Tools) > Add-ons > Appearance/Themes).
*Don't make any changes on the Safe mode start window.
*https://support.mozilla.com/kb/Safe+Mode -
How do I get rid of (to many HTTP redirects) from my App Store
Every time I go to categories or top 25 I cannot get in it keeps saying to many HTTP redirect how can I fix this
It did not start until I had my phone reset. And I try resetting my phone again and it won't even reset nowClearing the History and Cookies on Safari then closing safari from the background has helped me with this issue
Go to Settings then click on Safari. Once there, clear the cookies and data. Then go into safari app then clear the history. Once you do that, close safari from the background by double clicking the home button, hold the app then hit the red - to close.
Maybe you are looking for
-
AMD FireGL GPU + Creative Cloud app = Color Depth & other Issues
Hello, I am writing this post to help anyone who may have ran into the same issues I am seeing with my AMD FireGL graphics adapter when using the Adobe Creative Cloud app on a windows 7 PC. I ran into a problem installing and setting up the Creative
-
How do I use old playlists on a new computer with my music still on an external drive?
I have a MacBook Air. I'm getting an external hard drive and plan to copy all of my files, including music, to it from my family Mac Pro. I am planning to keep the music on the external drive as there is not enough room on my laptop. I want to be abl
-
Multiple icloud accounts in iMessaging?
can I add a second icloud email to imessaging?
-
How to update a string value located on the main VI
Hello I would like, from a subVI, to update a string value located in the main VI (using References). I was trying to find examples on NI web page but it´s impossible to download them (for more than one month : Error, File Not Found), do everyone has
-
This is the first time using arch, though I have been using Ubuntu for a while. I have it installed in 64-bit virtualbox inside an ubuntu host. I just installed gdm and gnome-shell, but a weird issue happens when drawing some text. This happens on th