For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

strongarm_46960's avatar
strongarm_46960
Icon for Nimbostratus rankNimbostratus
Oct 05, 2010

No server hello, no pool packets

when configured using port 80, everything works fine, as soon as I switch to SSL, pool side fails to send.     I am using automap. usedthe SSL profile on client and server side, From the tcpdum...
config
design
Chris_Miller's avatar
Chris_Miller
Icon for Altostratus rankAltostratus
Oct 05, 2010
Posted By strongarm on 10/05/2010 10:09 AM

 

Like I said, the first part of the connection( to Virtual) works fine, I see the client & server cert being exchanged. Its the pool connection which shows no packets, nothing.

 

 

Funny part is changing everything to port 80 works.

 

 

 

Could it be a Network firewall blocking packet to the SNAT address on port 443? but then why would i be able to receive the server cert (pool side).

 

 

 

thanks.

 

 

It could certainly be a firewall blocking traffic. That's why I recommend doing the capture from the F5 as that'll show whether the source address translation is working properly and if you're getting a RST or silent-drop for the traffic to the pool members:443.