Hi guys I need your help ! chatgpt sent 403 forbidden response code when client access via sslo I guess chatgpt API connection can't established becuase of proxy setting please let me know the reason thank you

Hi I got documents about that chatgpt using http2.0 so we need enable http2.0 please check below url https://my.f5.com/manage/s/article/K32080520 unfortunately I have another problem.. template Lx package does not work after 16.1.0 .. this configuration need over the 16.1.0 os version thank you

Hi !Thanks for the information.We are using Version 16.1 or later and will give it a try.thank you.

neeeewbie and/or sugiyama_san - is there one or more replies that you may Accept As Solution? Seems like the thread may not be done but...even a partial solution (or further update?) could help future users trying to leverage ChatGPT.Thanks, Lief

Hi @neeeewbi and LiefZimmermanSorry for the delayed response. I have checked to ensure that there are no issues with the actual modifications made.I created a verification environment that closely resembles the actual service provision,and after applying the settings,I was able to confirm that it worked as expected, and ChatGPT was available for use.made the following changes to the 'Client Profile' used in the 'SSL Configuration'.Bigip Ver 16.1 (SSLo Ver 9.3)SSL Forward Proxy > Hello ExtensionsExtentions List...Application-Layer Protocol Negotiation Enable Thanks!!

neeeewbie has the auth already happened? Do you have a capture without SSLO?

chatgpt sent 403 forbidden response code when client access via sslo

LiefZimmerman
Admin
Jun 20, 2023
neeeewbie and/or sugiyama_san - is there one or more replies that you may Accept As Solution? Seems like the thread may not be done but...even a partial solution (or further update?) could help future users trying to leverage ChatGPT.
Thanks, Lief
- neeeewbie
  MVP
  Jun 21, 2023
  firefox browser user can access the chatGPT without http2 profile
  
  other browser need http2 profile
  - sugiyama_san
    Altocumulus
    Jul 12, 2023
    Hi @neeeewbi and LiefZimmerman
    Sorry for the delayed response. I have checked to ensure that there are no issues with the actual modifications made.
    I created a verification environment that closely resembles the actual service provision,
    and after applying the settings,
    I was able to confirm that it worked as expected, and ChatGPT was available for use.
    
    made the following changes to the 'Client Profile' used in the 'SSL Configuration'.
    Bigip Ver 16.1 (SSLo Ver 9.3)
    SSL Forward Proxy > Hello Extensions
    Extentions List...
    Application-Layer Protocol Negotiation Enable
    
    Thanks!!
buulam
Admin
Apr 11, 2023
neeeewbie has the auth already happened? Do you have a capture without SSLO?
- neeeewbie
  MVP
  Apr 12, 2023
  working well when I configure bypass destination IP (chatgpt ip address)
  but our customer wnat to see the all packet
  - buulam
    Admin
    Apr 12, 2023
    I think the site leverages OAuth. Are you able to tell if the login is passing through?
Kevin_Stewart
Employee
Jul 11, 2023
Late to the scene...

Officially, ChatGPT through SSLO requires HTTP/2. The Proxy ALPN option was added in SSLO 9.0: https://clouddocs.f5.com/sslo-deployment-guide/sslo-09/chapter1/page1.02.html
- sugiyama_san
  Altocumulus
  Aug 28, 2023
  Hi Kevin_Stewart
  The configuration I'm using in my SSLo involves decrypting HTTPS traffic, forwarding it to an explicit proxy (McAfee Web Gateway) for security inspection, and then re-encrypting it.
  Enabling the ProxyALPN option allowed me to use the desired ChatGPT. However, all the traffic using HTTP/2 to communicate ceased flowing to the explicit proxy on the SSLo service chain side.
  Is there a way to resolve this issue and restore the flow of traffic using HTTP/2 to the explicit proxy within the SSLo service chain?
  - Kevin_Stewart
    Employee
    Aug 28, 2023
    HTTP/2 to an inline HTTP inspection device is not supported.
- LiefZimmerman
  Admin
  Jul 11, 2023
  Thanks Kevin_Stewart - your expertise is always appreciated.
  neeeewbie - can you mark one or more of these as Solutions?

Forum Discussion

chatgpt sent 403 forbidden response code when client access via sslo

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Hey ChatGPT, can you write iRules?

Using ChatGPT for security and introduction of AI security

Cyberattacks On Embassies, Threat Actor Using ChatGPT To Write Malware, and MMS Vulnerabilities

ChatGPT and security - This Week in Security Feb 18th to Feb 25th, 2023

Introduction of Incident Response

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS