Forum Discussion

MarkM_63051's avatar
MarkM_63051
Icon for Nimbostratus rankNimbostratus
Jan 23, 2012

HTTPS Problem

Hello,     Up until now using the F5 has been fairly straight forward. Adding HTTPS certificate support for incoming IE connections however has got me stumped. I have watched the online webinar ...
app sec
BIG-IP Access Policy Manager (APM)
security
nathe's avatar
nathe
Icon for Cirrocumulus rankCirrocumulus
Jan 24, 2012
Mark

 

 

To be sure - are you seeing monitor traffic and / or production traffic from the F5 to the tomcat server as both, I expect will be using port 80 so it may not be obvious. You may be seeing the client - f5 production traffic but no f5 - server production traffic, only monitor traffic. Hope I'm making sense.

 

 

What I always do here is tcpdump the client side interface and the server side interface at the same time, BUT seperately, and you should see a match up of the traffic (if it's working of course). You will see a tcp and seperate ssl handshake on 443 clientside and then tcp handshake on 80 on the serverside.

 

 

I presume you've not got a serverside ssl profile enabled on the virtual have you? You mentioned earlier the f5 will terminate the ssl connection so you won't need one.

 

 

As nitass requested a good look at your VS setup may help here.

 

 

N