http profile on layer 4 server intermittently breaks connections
Has anyone seen this?
I have a performance layer 4 virtual server (that for some reason had an http profile attached) that is load balancing microsoft ADFS servers. Since it's passthrough the backend servers themselves do the encryption and what not. This has been setup and working fine for months with no changes on either side.
Today about 50-60% of the requests to either backend node would fail. After doing packet captures on the client, the F5 and the backend nodes I found that the F5 would send a TCP/RESET to the client and backend nodes after the backend node responded with the SERVER HELLO, Certificate, Server Key Exchange, Server Hello Done in the handshake. After much troubleshooting I found removing the http profile stopped this from happening...I don't think we need the http profile but I'm curious why it worked so long with it applied and why it broke all of a sudden and only for about half the requests. We are running 13.1x