Forum Discussion

Altostratus

Feb 16, 2021

F5 Client SSL

Hi There, I came across a strange behaviour while performing a SSL certificate renewal for a VIP. My VIP have two service ports 2040 and HTTPS. The HTTPS vip is not accessible via the browser. Bot...

MVP

Feb 27, 2021

there is a chance you are not doing SSL offloading on the BIG-IP, you say you do, but if what you describe is true then that is an option for sure.

another might be the that the port 443 IP might be directly on the backup server and skip the BIG-IP somehow.

i would not focus on the F5 configuration but determine if you really see the SSL Labs request hit the BIG-IP and if it responds with the old or new certificate.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

F5 Client SSL

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

ASM/AWAF declarative policy

Changes to DO and AS3 GitHub - no longer monitored

Help with SSH Virtual Server

GRE Tunnel Issue

Help with an iRule to disconnect active connections to Pool Members that are "offline"

Related Content

F5 Distributed Cloud - Traffic Steering based on Client IP Address

SSL Profiles Part 8: Client Authentication

Fingerprinting TLS Clients with JA4 on F5 BIG-IP

Addressing Shadow AI with F5 BIG-IP SSL Orchestrator

Integrating Security Solutions with F5 BIG-IP SSL Orchestrator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS