I ran into a problem yesterday where, when using a SSL accelerator, which talks HTTPS to the browser and plain ol' HTTP to the server cluster, the site was mysteriously cutting over to a HTTP version of the site thereby losing all the user's cookies which were set while using SSL. Using Service Capture, I was able to see that the server was throwing a 301 code then redirecting to HTTP instead of HTTPS. It turns out that if you have URL in the fashion of "http://www.mydomain.com/subDir", IIS looks for the file "subDir" first. IF it cannot find the file, it will do a "courtesy redirect" to "http://www.mydomain.com/subDir/". Since the server is so kind to redirect like that and, it thinks it's talking HTTP because the SSL accelerator is doing the SSL between the cluster and the browser, the server redirects to a HTTP location, not a HTTPS location. This is called a courtesty redirect. Thanks Microsoft.