Forum Discussion
Hi,
Will try to go via Support.
I am not sure about your last advice:
troubleshoot yourself how it is working (multiple rewrite rules depending on the URI and capture server side traffic to see if the F5 send the CLIENT_HELLO packet)
I already checked that when http is set in Server URI then BIG-IP is not sending any CLIENT_HELLO packets but still sending to port 443.
Immediately after changing http to https Server SSL profile starts to work - normal SSL Handshake performed and traffic encrypted.
What is strange that seems to be not a case if Local Traffic Policy is used to switch between Pools with selective disabling Server SSL.
Will have to test but I pretty sure that even if there is URI Rule http <-> http but selected pool member is using Server SSL it is not disabled - encryption works.
Piotr