Forum Discussion

Altostratus

Aug 29, 2016

SSL errno 104 through F5 (vip), directly with curl ok

Hello community, I've the following configuration design within a virtual server configuration: - A virtual server will route the traffic based on the hostname within the request to differen...

Altostratus

Ok - here are some new tcpdumps. On the first screenshot you can see the tcpdump if I perform manually the command

openssl s_client -connect 10.235.96.29:4443

The second screenshot is the tcpdump if I execute the test through the F5 vip. The connection try including only five packages. After the F5 receive the RST, ACK from the application server the F5 start a new try.

The only thing which I can see at the moment is that the length of the 4th package is different.

seilemor_131269

Altostratus

Oct 04, 2016

Ok - I've solved the problem. I've disabled TLS features within the server SSL profile. I think it is a "feature" of the old 11.4.1 version which we are use. I'll now plan a update of the system to the current BigIP version.

Thanks for your support and your helpful comments ;)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL errno 104 through F5 (vip), directly with curl ok

Recent Discussions

301 redirect and waf policy log problem

Big-IP VE edition for MacBook M4 Chip

ASD

Background Tasks

APM with EntraID as idP / request signed

Related Content

Will a port specific VIP override an ANY VIP?

100+ Internal VIPs in AWS

Log client to vip connections

Disable vip that is listening on different ports

VIP with URL domain changeable?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS