Forum Discussion

Nimbostratus

Nov 19, 2017

HTTPS not working with standard Virtual Server

Hello, I have a standard VS configured to work for HTTPS. There is no client/server SSL profile configured in the VS. But for some reason its not working. But if I change the VS to 'Performance(...

application delivery

BIG-IP

Simon_Blakely

Employee

Nov 19, 2017

You may be having fragmentation or MTU issues.

A FastL4 virtual passes traffic without proxying, so packets on the server-side have the same TCP options as the client side packets.

A Standard virtual establishes a full connection on the client-side, and the server-side TCP options may be different to the client-side options. This may cause problems with packet fragmentation and reassembly that can interfere with SSL negotiation. You would need to collect a packet capture to be certain about what is happening.

I'd generally recommend FastL4 virtuals for SSL passthrough, as opposed to Standard virtuals, for this reason.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)