Forum Discussion

mehigo_220067's avatar
mehigo_220067
Icon for Nimbostratus rankNimbostratus
Sep 16, 2015

is there anything named SSL Oneconnect?

Hi, I have a BIG-IP LTM 4000 OS: 11.5 The server we want to load balance is actually a single server. It only accept one client. If the second client sends requests the server wont respond it. the connection between BIG-IP and server is SSL but it is unencrypted between clients and BIG-IP The problem is only one client can connect to the server and only if we disconnect the first client, the second client can be served. I read oneconnect is only for http and not for SSL. and I read somethings about TCP Collect and TCP Message-Based Load-Balancing (mblb) and ... but I am not sure those methods will help us or how to implement them. can someone shed some light on the right way please. sorry for my bad English and Thank you in advanced. ME

 

application delivery
deployment
LTM

2 Replies

Sort By
  • Stanislas_Piro2's avatar
    Stanislas_Piro2
    Icon for Cumulonimbus rankCumulonimbus
    Sep 16, 2015

    Hi,

     

    One connect allow multiple requests from different clients to share the same TCP connection.

     

    In F5 HTTPS is handled as HTTP when assigning both HTTP and SSL profile (client side of server side)

     

  • Hannes_Rapp's avatar
    Hannes_Rapp
    Icon for Nimbostratus rankNimbostratus
    Sep 16, 2015

    As you stated your problem, only one client can connect at a time. Why do you think it would help if you reduced the number of backend server connections, does the limit apply only at the TCP/IP stack level? I think it's more than likely the limit applies at the application level, or in other words, the limit is 1 true client not 1 TCP connection. Therefore, even if there is a solution, your Server will not be able to respond to a stream of requests of different users via the same TCP socket.

     

    OneConnect has a single purpose and that is to reduce the load (of BigIP and the backend server) by reducing the number of serverside connections.

     

    Please clarify the following

     

    • Is the limit 1 TCP connection or 1 client?