Problem with website Pool using port 443

Question

Hi,&nbsp;
&nbsp;We've set up this new UAT website to only use https so the pool members are load balancing using port 443. The health monitor I've created is also using https. Everything looks fine as the Pool members are green but I'm not able to access the website using the Virtual Server, it just seems to timeout. Just wondered what steps I can take on the F5 to troubleshoot this as I can access the site fine if I connect directly to the webservers?&nbsp;
&nbsp;Thanks
&nbsp;Darren

markj_58101 · Answer

Try run a tcpdump on ingress &amp; egress of the LTM, this will tell you if the LTM is stopping the traffic (likely to be a config issue) or if the server is not responding.

dazzla_20011 · Answer

Sorted, realised I had to apply the server-side ssl profile to the Virtual Severs. 
&nbsp;  
&nbsp; Thanks

austin_geraci_3 · Answer

Yes sir, you're going to need to re-encrypt that traffic.. ;) 
&nbsp;  
&nbsp; Another thing you should consider, if your environment allows it, is totally offloading the SSL.  One of the major benefits of terminating SSL on the LTM is you save the processing of decrypting/encrypting at the server.. no need for that overhead or special ssl cards.. 
&nbsp;  
&nbsp; In order to do that you would need HTTP at the server vs. HTTPS, go back to no server-side ssl profile, and a http monitor vs https.. 
&nbsp;  &nbsp;

Forum Discussion

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

How to Verify config before loading to F5

Logical Disk Full to Migrate rSeries

HSL - Local TimeZone - in syslog server

VIP control across data centers - how to ensure only 1 VIP is up at a time?

Related Content

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

APM-Specific Features for Securing Your Website

Using the Model Context Protocol with Open WebUI

decrypted tcpdump capture without using an iRule and without using tshark

Use BIG-IP LTM Virtual Server & iRule for an internal "What's My IP" website