For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Sim_111521's avatar
Sim_111521
Icon for Nimbostratus rankNimbostratus
Feb 05, 2014

F5 ltm Tomcat port 8080 don't display non secure content

I configured my nodes with service port 8080. For Liferay (Tomcat). I created my virtualservers for port 80 and 443. If i go to my tomcat server on port 8080, the page is displayed correct. If i go ...
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Feb 07, 2014

Assuming you JUST have port 80 and 443 VIPs, and the port 8080 server is not externally accesible, if the page loads at all despite the warning, it means that all traffic is getting directed to port 80 (http://) or 443 (https://). You're most likely getting the warning because the browser is communicating over 443, but is being asked to fetch content over port 80. With a client side capture you should see this interaction. Look first for how the client accesses the page with an https:// URL, and then look at the content within the responses. You'll probably see references to the same URL, but http://. That's what you have to fix. Ultimately, you'll want ALL traffic for this application to go over port 443 to eliminate the warning message.