SOLVED: Mtls fails on http requests even though i have setup http to https rule in ssl settings

I am using mtls to verify client identity. The issue is that many requests come in as http requests and hence mtls fails.

Is there any way to convert the http requests to https requests before the firewal rule?

I have tried setting a page rul to convert http to https and have also tried using the “Always use https” but this does not work.

I figure that the firewall mtls rule triggers first and blocks the request and hence the always use https does not get a chance to get triggered. Is there any way to use mtls and still convert the http requests to https before the mtls firewall rule?

Found a solution - i create another rule in the firewall to allow access for non ssl requests. That then gets converted to https by the always use https. The converted https request then uses mtls

2 Likes