Forum Discussion

Nimbostratus

Nov 10, 2022

client not support ssl to ssl supported server

Hi all, I have a condition that I have an application that needs to send api requests. and if it comes from a certen source ip I need to forward it to another pool. I cant do a redirect(302)..c...

application delivery

CA_Valli

MVP

Nov 10, 2022

You should be able to achieve this with a serverSSL profile on your virtual server.

If only this very specific traffic needs encryption, you could add an "else" statement with SSL::disable serverside command in addition to serverSSL profile.. something like this

when HTTP_REQUEST {
 set nossl 1
 if {[IP::addr [IP::client_addr] equals "10.10.10.10"]} {
  HTTP::header replace Host "xyz"
  pool another_pool-443
  HTTP::uri "abcwq/"
  set nossl 0
 }
}
when SERVER_CONNECTED {
  if {$nossl}{ SSL::disable } 
}

lior
Nimbostratus
Nov 10, 2022
I have configure the server ssl profile "serverssl" on the same vip that is configured with the I rule and it didnt work..
with wireshark I still see no ssl
- CA_Valli
  MVP
  Nov 10, 2022
  What is the full setup?

Forum Discussion

client not support ssl to ssl supported server

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Cipher Suites Supported (12.1.5.3)

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

SSL Orchestrator Advanced Use Cases: Client Certificate Constrained Delegation (C3D) Support

TMOS v17 support policy

Multi-port support for HTTP/TCP load balancers in F5 Distributed Cloud (XC)