[Offloading SSL] SOAP Response
Hi all, I would like help with a SOAP response problem.
I have two VIP with the same pool
VIP 1:443 --> Offload SSL --> Pool 8080
VIP 2:8080 --> Pool 8080
These two pools send traffic on a Tomcat 8.
On my VIP 1, I set a X-Forwarded-Proto: HTTPS column in the HTTP Header for the tomcat to answer me in HTTPS.
Here is my test result :
[/home/user]$ curl https://fqdn_of_vip1/cupro-ws-8.0/soap/WSCompte?wsdl |grep location
[/home/user]$ curl -H "Host: fqdn_of_vip1" -H "X-Forwarded-Proto: https" 172.16.105.63:8080/cupro-ws-8.0/soap/WSCompte?wsdl |grep location
As you can see, when I curl on VIP 1, Tomcat send me a response with an soap:address location=http...
But when I curl VIP2 with X-Forwarded-Proto manualy set, response is correct in HTTPS.
I think than when F5 do SSL Offloading.
X-Forwarded-Proto is generate by an irule :
if { [class match [HTTP::uri] starts_with datagrouplist1] and [ class match [IP::client_addr] equals datagrouplist2 ] } {
log local0. "Access 8080 from [IP::client_addr]"
HTTP::header insert X-Forwarded-Proto https
HTTP::header insert x-forwarded-proto https
HTTP::header insert ipis [IP::client_addr]
snat automap
pool mypool
For information, when I uncomment "snat automap", my CURL on VIP1 (HTTPS) send me a response location in HTTPS.
I don't understand why.
Do you have any information ?
Thaks a lot for your answer