Forum Discussion
swo0sh_gt_13163
Altostratus
- Well there is no technical reason for this. They already had one Client-SSL Profile applied on VS1, just to keep the objects separate we have created a separate Client-SSL Profile for VS2, in case if we need to implement any VS specific changes in future, it won't affect VS1.
- I am yet to take TCPDUMP, will share my findings on this.
My concern is, why it shows correct Cert while accessing the VIP, and not showing the same while accessing using FQDN? I cleared the statistics while using FQDN, and found that traffic is hitting correct VS.
That left me wondering about the observed behavior.
swo0sh_gt_13163
Jul 17, 2015Altostratus
I will share the the client-ssl and VS properties of non-working VS as and when I get next remote session with client. Also if I use the same working client-ssl Profile (which is applied to VS1) isn't changing the behavior.
What I fail to understand is, how it is fetching the correct certificate, if I directly access VIP rather than FQDN.
Allow me sometime to share the require information.
Thanks Ronald.