• Hello,

    I would like to know if it's possible to redirect a request from a client from HTTP to HTTPS. An example would be if a client typed  http://webmail.mymailserver.com the request would get redirected as https://webmail.mymailserver.com which would be display in the address bar. I know this is possible with ISA Sever 2006.

    If this can be done, how would I go about doing this?

    Karl

  • Rebel Alliance Developer Netgate

    That would be handled by your web server or maybe a proxy. You cannot redirect it at a network/port level because the client would not be talking the proper protocol.

    When an HTTP to HTTPS redirect happens the client makes a full HTTP connection to the web server and then the web server sends the client a redirect to HTTPS.

    If it happened on ISA server, it was likely a proxy at work and not the firewall mechanism itself.


  • In ISA this is actually done by the built-in reverse proxy that ISA features.

    You can achieve the exact same thing by using a reverse proxy in pfSense.
    I can recommend the HAproxy package or the Squid Reverse as they are both capable of doing this.
    But please note that you will have to change your setup as the client now has to contact the proxy instead of the actual server. The proxy will speak with the server on behalf of the client


  • Thanks for pointing me in the right direction

    I can recommend the HAproxy package or the Squid Reverse as they are both capable of doing this.

    I've installed the Squid3 package which includes a Redirects Tab.