SSL Offload query

Question

I'm trying to configure SSL offload but it is not working and bit puzzled why.&nbsp;
I've tested the site running on port 80 with no certificate.  I've tested the site on 443 using both the client and server side ssl.  On both occasions the site works.  
&nbsp;
When I change the settings to just use the client SSL the site does not work.  All the statistics show the traffic getting to the website but the site does not load.  Am I missing something with the setup on the F5 client SSL or would it be the website having an issue?&nbsp;

surgeon · Answer

can you provide your VIP and pool config&nbsp;

phips_306701 · Answer

Hey,&nbsp;
try to reconfigure your HTTPS pool so that the members are listening on port 80.&nbsp;
[VIP 443] -&gt; ssl offload -&gt; [pool member 80]&nbsp;

chris_richards_ · Answer

For the tests I'm doing I don't have a pool setup. The idea is to use traffic policies forward the correct head to the correct node.  We have multiple sites running on several nodes.&nbsp;
I've done a TCPDump of the connection.  When looking at the information can see that the web server responds with TCP RST, suggsting that the IIS server is resetting the connection after receiving the HTTP GET&nbsp;

Forum Discussion

SSL Offload query

3 Replies

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

F5 Access Guard Deprecated: ZTA APM

F5 loadbalancer not working

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

Related Content

SSL Offloading for specific IPs or range of IPs

Pool downtime query

F5 SSL Offload behind Nginx Reverse Proxy

iRule Processing query

BIG IP DNS - Queries Per Second