Fletcher_Cocquy
Mar 15, 2010Nimbostratus
SSL Proxy Juniper SSL VPN
Hi, we are not ready to expose our Juniper SSL VPN externally, so I was asked to test the BigIP's capability (its already exposed externally) to proxy SSL to it.
I setup the external HTTPS virtual server, and mapped to the pool of one consisting of the Juniper SSL VPN's IP port 443 (note this is different than our normal case where we want to offload the SSL - here we want to pass on the HTTPS)
Anyway, the Juniper is denying the requests from the BigIP with messages:
SSL negotiation failed while client at source IP 'xx.yy.104.107' was trying to connect to 'aa.bb.70.132'. Reason: 'http request'"
which does not make sense to us since the request is coming on port 443 from the BigIP.
Is there a setting I'm forgetting in the BigIP to make this SSL==>SSL proxy work?
thanks