Netgate Discussion Forum
    • Categories
    • Recent
    • Tags
    • Popular
    • Users
    • Search
    • Register
    • Login

    Redirecting HTTP Requests as HTTPS

    Scheduled Pinned Locked Moved General pfSense Questions
    4 Posts 3 Posters 1.2k Views
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • K
      kiekar
      last edited by

      Hello,

      I would like to know if it's possible to redirect a request from a client from HTTP to HTTPS. An example would be if a client typed  http://webmail.mymailserver.com the request would get redirected as https://webmail.mymailserver.com which would be display in the address bar. I know this is possible with ISA Sever 2006.

      If this can be done, how would I go about doing this?

      Karl

      1 Reply Last reply Reply Quote 0
      • jimpJ
        jimp Rebel Alliance Developer Netgate
        last edited by

        That would be handled by your web server or maybe a proxy. You cannot redirect it at a network/port level because the client would not be talking the proper protocol.

        When an HTTP to HTTPS redirect happens the client makes a full HTTP connection to the web server and then the web server sends the client a redirect to HTTPS.

        If it happened on ISA server, it was likely a proxy at work and not the firewall mechanism itself.

        Remember: Upvote with the 👍 button for any user/post you find to be helpful, informative, or deserving of recognition!

        Need help fast? Netgate Global Support!

        Do not Chat/PM for help!

        1 Reply Last reply Reply Quote 0
        • keyserK
          keyser Rebel Alliance
          last edited by

          In ISA this is actually done by the built-in reverse proxy that ISA features.

          You can achieve the exact same thing by using a reverse proxy in pfSense.
          I can recommend the HAproxy package or the Squid Reverse as they are both capable of doing this.
          But please note that you will have to change your setup as the client now has to contact the proxy instead of the actual server. The proxy will speak with the server on behalf of the client

          Love the no fuss of using the official appliances :-)

          1 Reply Last reply Reply Quote 0
          • K
            kiekar
            last edited by

            Thanks for pointing me in the right direction

            I can recommend the HAproxy package or the Squid Reverse as they are both capable of doing this.

            I've installed the Squid3 package which includes a Redirects Tab.

            1 Reply Last reply Reply Quote 0
            • First post
              Last post
            Copyright 2025 Rubicon Communications LLC (Netgate). All rights reserved.