server hangup error

Question

Hi &nbsp;
Trying to new my SSL cert for ADFS webproxy with SHA2 when i install the cert i am getting server hangup error &nbsp;
bypassing the F5 it works fine&nbsp;
can anyone help&nbsp;

kevin_stewart · Answer

It's very likely that the webproxy is not accepting some attribute (or lack of) of the BIG-IP's SSL ClientHello. Here's what I'd do to troubleshoot:

Perform and SSLdump on the server side VLAN to see where/when the error happens:
ssldump -AdNn -i [server side VLAN name] port 443 [and any additional filters]

If you see the server send a reset directly after the ClientHello, then you can assume the server is not able to comply with the BIG-IP's SSL options, or that the BIG-IP is missing an option that the server requires.

Assuming the issue is within the SSL handshake, which you'll determine in the first step above, no try to connect to the server directly with the openssl s_client command:
openssl s_client -connect [IP of server]

If that fails then you can be almost certain that the server is requiring something that it didn't before. Try adding an SNI (server name indication) attribute:
openssl s_client -connect [IP of server] -servername 'server1.domain.com'

If that works, then the server is requiring SNI, something that I've personally seen as a requirement in other ADFS environments. You can add a server name value to the BIG-IP server SSL profile and that should get it to work.

Forum Discussion

server hangup error

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

F5 MCP(Model Context Protocol) Server

Error post F5 upgrade

BIGIP Next - SHARED-00001: Internal server error

BIG-IP methods to Fix the “421 Misdirected Request” Error

Securing MCP Servers with F5 Distributed Cloud WAF

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS