Forum Discussion
Kevin_Nail
Nimbostratus
Jul 12, 2021need a way to get the DEFAULT cipher string via a yaml script
Im writing a yaml script to get the DEAULT cipher string being used. Here is my speciic code section: block: - name: check the default cipher bigip_command: commands: - tm...
Kurt_Knochner_5
Cirrus
Nov 03, 2011The proxies have been setup in transparent mode for SSL traffic, so they should not be involved in the SSL process. I think my biggest problem is getting the F5 to use a HTTP CONNECT method instead of the standard GET.
If the proxies really do work in transparent mode for SSL you won't need the CONNECT method. CONNECT is only used by HTTP clients when they know about the proxy. In transparent mode the clients don't know there is a proxy and they will just try to connect directly to the target, by issuing a tcp connection to server:443.
So, your ssl server profile should work out of the box.
Let's assume the SSL connection works, then you still need to do this:
1.) Rewrite the URI to the location of the script "[HTTP::uri]"
2.) Rewrite the HOST header "[HTTP::header Host] replace", otherwise the target server might not accept the request.
Regards
Kurt Knochner
- Simon_BlakelyMay 20, 2018
Employee
Which logfile showed this message?
- ArdentAshok_356May 23, 2018
Nimbostratus
Which logfile showed this message? Debug logs What is the context of this message? Application attempt. MCPD is responsible for managing traffic when available it cannot manage traffic. Its observed to be misconfigured in my case. What is the issue/problem that you are trying to solve? Re-config, possibly as a fix
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects