Configure HTTP → HTTPS redirect

Last update: September 06 2024

Configure HTTP → HTTPS redirect

Control panel

1. Make sure that created a load balancer с HTTPS rulewhich will accept requests to the HTTPS version of the site. Available balancers can be viewed in control panels under Cloud platform →Balancers.

2. В control panels go to Cloud platform → Balancers.

3. Open the tab Balancers → balancer page.

4. Click Create a rule.

5. Select protocol The default port 80 will be automatically selected. The standard port 80 will be automatically selected, on which the balancer will listen to traffic.

6. Select target group By default, traffic that is not subject to the HTTP Policies in the rule. If there are no available target groups in the list, tap New target group и create a task force with the HTTP traffic destination protocol and port 80. If you want to discard traffic that does not fall under the HTTP policy, select Without a target group.

7. Mark it HTTP request headersthat need to be transmitted to the servers.

8. To create in the rule HTTP policy, press Add a new policy.

9. Select a test condition: HOSTNAME — EQUAL TO.

10. Enter the name of the domain, for example, example.com.

11. Select an action Redirect to URL prefix.

12. Enter the URL prefix — the part that will replace the protocol and domain name in the incoming request, for example, https://example.com.

13. Optional: change the policy name or leave the default one generated.

14. Click Add.

15. Optional: open the unit Advanced rule settings and specify connection settings:

    • for incoming requests to the balancer — specify the connection timeout and maximum connections;
    • for requests from the balancer to servers — specify the connection timeout, inactivity timeout and TCP packet waiting timeout.

16. Click Create.

OpenStack CLI

1. Make sure that created a load balancer с HTTPS rulewhich will accept requests to the HTTPS version of the site. Available balancers can be viewed using the command openstack loadbalancer list

2. Open the OpenStack CLI.

3. Create rule for a balancer with HTTP protocol and port 80:

   openstack loadbalancer listener create \
     --name <listener_name> \
     --protocol HTTP \
     --protocol-port 80 \
     --default-pool <default_pool> \
     <loadbalancer>

   Specify:

   • <listener_name> — NAME OF RULE;
   • optional: --default-pool <default_pool> — ID or name target group The default destination for traffic that is not covered by the HTTP Policies in the rule. The list of groups can be viewed with openstack loadbalancer pool list. If you don't have the right target group, create it. If you do not specify a parameter, traffic not covered by the rule will be discarded;
   • <loadbalancer> — ID or name of the load balancer. You can view the list using the command openstack loadbalancer list

4. Create HTTP policy in the rule:

   openstack loadbalancer l7policy create \
     --action REDIRECT_PREFIX \
     --redirect-prefix <prefix_domain_name> \
     --name <policy_name> \
     <listener>

   Specify:

   • <prefix_domain_name> — type domain https://example.com/;
   • <policy_name> — L7-policy name;
   • <listener> — The ID or name of the rule. The list can be viewed with openstack loadbalancer listener list

5. Create a condition in the HTTP policy:

   openstack loadbalancer l7rule create \
     --compare-type EQUAL_TO \
     --type HOST_NAME \
     --value <domain_name> \
     <policy>

   Specify:

   • <domain_name> — type domain example.com;
   • <policy> — ID or name of the L7 policy. The list can be viewed with openstack loadbalancer l7policy list