Virtual Server sending resets to the client and the node.
Running a 10.2.4 LTM, had a working dev environment for Asset Suite. App admins upgrade Asset Suite, finally, to address POODLE and all the other recent vulnerabilities out there. Post upgrade, they could authenticate to the app, but then they would get a "Page could not be displayed" message from IE and various other errors depending on which browsers you use.
We successfully fought through certificate issues and got all of that stuff straightened out, but I still was getting the "Page could not be displayed" message after authentication. If we bypass the LTM, it works fine, so not an app issue.
This VS is a Standard load balance with a pool with two members, using source address persistence, SNAT AutoMap and a redirect iRule to ensure everyone is using the correct URI.
After a couple of tcpdumps, I saw the LTM sending RST packets to both the client and the nodes. I did a few devcentral searches and looked at some SOLs. I removed the iRule from play and had the same issue. I adjusted "Maximum Syn Retransmissions" in my TCP profile and looked anywhere else I thought there could be a reset option.
Finally I removed the HTTP profile from the VS and the app works, but you need to put in the whole URI. Problem is, the redirect iRule is a must have for my customer and I can't do that without an HTTP profile.
What in the HTTP profile could be causing these resets?
Thanks,
Ken