Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

seilemor_131269's avatar
seilemor_131269
Icon for Altostratus rankAltostratus
Aug 29, 2016

SSL errno 104 through F5 (vip), directly with curl ok

Hello community,   I've the following configuration design within a virtual server configuration:   - A virtual server will route the traffic based on the hostname within the request to differen...
application delivery
irules
LTM
seilemor_131269's avatar
seilemor_131269
Icon for Altostratus rankAltostratus
Aug 31, 2016

Ok - here are some new tcpdumps. On the first screenshot you can see the tcpdump if I perform manually the command 

openssl s_client -connect 10.235.96.29:4443

The second screenshot is the tcpdump if I execute the test through the F5 vip. The connection try including only five packages. After the F5 receive the RST, ACK from the application server the F5 start a new try.

The only thing which I can see at the moment is that the length of the 4th package is different.

seilemor_131269's avatar
seilemor_131269
Icon for Altostratus rankAltostratus
Oct 04, 2016

Ok - I've solved the problem. I've disabled TLS features within the server SSL profile. I think it is a "feature" of the old 11.4.1 version which we are use. I'll now plan a update of the system to the current BigIP version.

 

Thanks for your support and your helpful comments ;)