Hi,
The SSL::disable command works when the BIGIP is the SSL termination of the SSL flow.
In your configuration it must not be the case, the SSL flow is established between the client and the server.
This is for example when you process HTTP and HTTPS on the same virtual server:port
then you can do something like this:
class http_methods {
"GET”
“POST”
“HEAD”
“PUT”
}
when CLIENT_ACCEPTED {
TCP::collect 5
}
when CLIENT_DATA {
if { [matchclass [TCP::payload] starts_with $::http_methods] } {
SSL::disable
}
}
This way if it's HTTPS you maintain your SSL configuration to make the BIGIP being the SSL termination with your client (ie it will talk in HTTPS) but if it's HTTP you receive then you disable your SSL profile to talk in HTTP only
N.