HTTPS not working with standard Virtual Server

Question

Hello,&nbsp;
I have a standard VS configured to work for HTTPS. There is no client/server SSL profile configured in the VS. But for some reason its not working. But if I change the VS to 'Performance(Layer 4)', it will work. I am wondering why this is so?&nbsp;
Here is my config:&nbsp;
&nbsp;
Any help would be appreciated!&nbsp;

simon_blakely · Answer

You may be having fragmentation or MTU issues.&nbsp;
A FastL4 virtual passes traffic without proxying, so packets on the server-side have the same TCP options as the client side packets.&nbsp;
A Standard virtual establishes a full connection on the client-side, and the server-side TCP options may be different to the client-side options. This may cause problems with packet fragmentation and reassembly that can interfere with SSL negotiation. You would need to collect a packet capture to be certain about what is happening.&nbsp;
I'd generally recommend FastL4 virtuals for SSL passthrough, as opposed to Standard virtuals, for this reason.&nbsp;

eey0re · Answer

You have an HTTP profile associated with your port 443 VS. If you are expecting TLS between the browser and the backend server to work, without Client and Server SSL profiles on the VS, then you need to remove the HTTP profile.

Forum Discussion

HTTPS not working with standard Virtual Server

Recent Discussions

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

How to Renew F5 Device Certificate

F5 ASM CEF Sending Logs in Specific TimeZone

Related Content

Pool round Robin not working with standard virtual server

Lightboard Lessons: standard virtual server behavior when no pool members are available

F5 Distributed Cloud: Virtual Sites - Regional Edge (RE)

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire

My Virtual IP doesn't work?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS