Forum Discussion
7 Replies
Hi Aditya,
define your Virtual Server as well as your Pool Members with the
port setting (Port 0 in WebUI).:any
This will make sure your VS accepts traffic on every port and forwards the traffic to your pool members on the same port.
Cheers, Kai
- Stanislas_Piro2Cumulonimbus
You can define the virtual server with port translation disabled... the virtual server won’t change the port
- LeonS_296027Nimbostratus
Where is you certificates located?
- Aditya_MehraCirrus
Hi Leon,
- AceDawg1Nimbostratus
Have you tried running a capture (tcpdump and ssldump) to determine where SSL communications are breaking down? If you're not familiar with ssldump, check out:
.https://support.f5.com/csp/article/K10209
- Aditya_MehraCirrus
Hey, Did not take a tcp and ssl dump, but I added the below iRule and it works for http port.
when CLIENT_ACCEPTED { if {([TCP::local_port] != 80) && ([TCP::local_port] != 8103)} { HTTP::disable } }
But this does not work for https, the request passes through to the backend pool member succesfully but the X-Forwarded IP is not present. I believe as we disable the http profile then the X-Forwarded_http profile is not used at all.
Any workaround for this?