Forum Discussion
5 Replies
Sort By
- rob_carrCirrostratus
You might also need to remove the HTTP profile from the virtual server, if you had one assigned (not uncommon in SSL offload configurations).
- Rajaraman_12066Nimbostratus
Will F5 still forward http request after removing profile ?
- rob_carrCirrostratusRemoving the HTTP profile will not prevent the BIG-IP from forwarding HTTP requests. Since HTTPS traffic is encrypted, the BIG-IP is unable to see the HTTP requests and simply load-balances the TCP connections.
- Samir_Jha_52506Noctilucent
You need to enable default server profile with Https Vip. Hope It will work.
- Kevin_StewartEmployee
You need to enable default server profile with Https Vip
This is not entirely true. As Rob states, to allow SSL to flow through the box without offload, you need to remove BOTH client and server SSL profiles AND any layer 7 profiles (like HTTP) that may attempt to evaluate the unencrypted payload.