F5 Virtual Server responds to clients with pool member port instead of VS port

Question

I have an F5 HA cluster deployed in one-arm mode with SNAT and source port preserve enabled (by default since i used iApp templates). The VS is configured to listen on port 443 with an http to https redirect enabled. Challenge is we have noticed that for pool members listening on different ports other than port 80 eg port 9080, when the traffic is sent to such pool members the response to the client goes with the pool member port thus the web page doesn't load since the firewall permits only ports 80 and 443 for client to F5 VS communication. Expectation was that response to clients should be strictly on port 443.

andrew-f5 · Answer

The response should be using port 443 between client and virtual server but may not be if your server is including a port within a redirect or location header, in which case we honor HTTP RFC. &nbsp;Also make sure you have "Port Translation" enabled within the advanced virtual server configuration.

hoang_hung · Answer

Hi &nbsp;I have depoloy many my customer and I have same error with &nbsp;.Default Virtual Server advanced " enable default ". I sometime use irule or customize context path on Web.Do you known workround for it ?&nbsp;Thanks allHung Hoang

Forum Discussion

F5 Virtual Server responds to clients with pool member port instead of VS port

Recent Discussions

XC Bot defense question

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

NetScaler to F5 Migration

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Related Content

F5 Distributed Cloud: Virtual Sites - Regional Edge (RE)

OCSP Responder

VMware NSX to Red Hat OpenShift Virtualization Migration with F5 Distributed Cloud

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire

NGINX Virtual Machine Building with cloud-init

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS