For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Noyan_137135's avatar
Noyan_137135
Icon for Nimbostratus rankNimbostratus
Oct 14, 2015

APM Per-request policy does not directly show warning page when SSL is bypassed

Hello, I have created a per-request policy within an access profile assigned to SWG_Explicit_iApp_Template_v1.3 In this per-request policy I used URL-filter, this works when an http request hits the ...
availability
BIG-IP Access Policy Manager (APM)
security
TMOS
TMSH
Noyan_137135's avatar
Noyan_137135
Icon for Nimbostratus rankNimbostratus
Oct 14, 2015

I used "SSL Bypass Set" to directly make SSL handshake with the server, but I cannot be sure it bypasses SSL because yes, I used my test certificate at first. After that I changed this setting to default.crt in iApp and tried again, but I still got "problem with the site certificate"

 

For example I added facebook to the URL filter, it uses https as we know. I expect to get the access policy warning directly, but I always get site certificate warning before this.