Hi! i have a p2p connection to a company. this company hosting an ssl web site for our workers. our workers connect to this ssl web site from our internal network by an f5 Virtual server i have created for this . now i want to publish the web site by portal Access Via (APM ) for workers at home. i tried to create a new portal resource and put a URI,Proxy Host,Proxy Port 443 and it is not working i think because of the site is SSL site. could you help me please how to configure it ? Thanks, Aviv Hassidim

Sounds like you my need to enable SNAT to make sure the traffic isn't asynchronously routing.

Hi Brad ! if i publish an http site instead it works, so i dont think it's an issue of SNAT. Does someone has other idea? Thanks, Aviv Hassidim

If its not a SNAT issue, have you verified that you have a server ssl profile attached to your virtual server?

Publish a web site that is already ssl

11 Replies

Brad_Parker_139
Nacreous
Sep 28, 2015
Sounds like you my need to enable SNAT to make sure the traffic isn't asynchronously routing.
- Brad_Parker_139
  Nacreous
  Sep 28, 2015
  If its not a SNAT issue, have you verified that you have a server ssl profile attached to your virtual server?
Brad_Parker
Cirrus
Sep 28, 2015
Sounds like you my need to enable SNAT to make sure the traffic isn't asynchronously routing.
- Brad_Parker
  Cirrus
  Sep 28, 2015
  If its not a SNAT issue, have you verified that you have a server ssl profile attached to your virtual server?
Aviv
Cirrus
Sep 28, 2015
Hi Brad ! if i publish an http site instead it works, so i dont think it's an issue of SNAT.

Does someone has other idea?

Thanks, Aviv Hassidim
Aviv
Cirrus
Sep 28, 2015
Hi Brad!

i dont have a server ssl profile attached to the virtual server. i want to attach an ssl server profile , but i dont have the certificate key , do i need it?

Aviv
- Brad_Parker
  Cirrus
  Sep 28, 2015
  no, you can just use the default serverssl profile, no need for a certificate or key here.
- Aviv
  Cirrus
  Sep 28, 2015
  when i attach the default serverssl profile the web site is not accessible even directly to the virtual server ,without apm.
- Brad_Parker
  Cirrus
  Sep 29, 2015
  did you attached the serverssl profile to your APM virtual server?
Aviv
Cirrus
Sep 29, 2015
Hi brad!

can you help please?
Aviv
Cirrus
Sep 29, 2015
Hi!

i will ask again just to be clear because i'm sure many of you folks already did that:

i have a website that i do not need to do ssl offloading at the bigip because the site is alredy ssl enabled at the source. i have create a standard VS with pool that contains the ip address of the website as node and port 443. when i insert into my dns the name of the web site plus the ip and try to surf to the site ,the site is up and running. i have an apm portal access that has some http applications uri Resources and i can start them throw apm portal access. after i set https application uri Resource i try to run the application from apm and i get this error : "DNS lookup error. The requested server does not exist" i have checked dns by dig commnad and i have resolving of the Resource and also curl and i get the page so dns is not the issue (i think). Brad suggest to set default serverssl profile on the apm virtual server and i did that but i get the same error.:You do not have permission to access this page. DNS lookup error. The requested server does not exist.

So how can i debug this?

Thanks,

Aviv Hassidim