Forum Discussion
It seems the problem I had with some SSL services was due to a missing parametrer in the WebBrowser. In security parameters, for some reason, "TLS1.0" was disabled. That resolves a fair number of down services.
I have still connection problems on some HTTP and HTTPS services:
-
HTTP: The client has a successfull TCP handshake with F5, but then F5 makes no handshake with the server and sends a FIN packet to the client. The monitor is OK, it connects on the listening port, sends a requests and checks the receive string.
-
HTTPS : The client has a successfull TCP handshake with F5, then initiates SSL packets. Then F5 has a successfull TCP handshake with the server. No SSL connection on this side. The client sends the crypted data, F5 sends uncrypted data to the server. The server sends the answer and F5 sends a crypted PSH packet to the client. But nothing returns on the webBrowser. I used ssldump utility (without the ciphering) and compare with another up https service, I saw no irregularity
- Feb 03, 2015Hi Merry95, do you have an http profile or an iRule assigned to the virtual server? Any compression or acceleration profiles selected? Any log messages in /var/log/ltm? To simplify things you can provide the output of "tmsh list ltm virtual ". Thanks, Stephan
- Merry95_171142Feb 03, 2015NimbostratusHello Stephan, I have no http profile, and no compression/acceleration profile. No log in /var/log/ltm here is an extract from F5, with a HTTP Virtual Server : `ltm virtual VS_E3_GedEsign_8112 { destination 192.x.y.z:8112 ip-protocol tcp mask 255.255.255.255 partition WAS_Recette pool E3_GedEsign_8112 profiles { /Common/tcp { } clientssl_E3-Svc003Intranet { context clientside } } source 0.0.0.0/0 source-address-translation { pool WAS_Recette_SNATPool type snat } vlans { Vlan_179 } vlans-enabled vs-index 348 `