Forum Discussion

Cirrus

Aug 24, 2015

SSL error "record_overflow"

Hi, I'm trying ti troubleshoot SSL RST from the F5 VS, and the RST cause is RST cause: [1915701:1666] {peer} SSL error (record_overflow(22)-C actually I don't know what this issue implies to? I...

application delivery

BIG-IP Access Policy Manager (APM)

Employee

Aug 24, 2015

Which side is sending the reset? A record overflow is usually when one side sends more data than the peer can handle, for example when a server sends its certificate and a very long list of subordinate CAs in its ServerHello message.

If you do an openssl s_client from the BIG-IP shell you should be able to see what's happening:

openssl s_client -connect [server ip:port]

I'd also run an ssldump to watch data plane traffic between the BIG-IP and server:

ssldump -AdNn -i 0.0 port 443 and host [ip of server]

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL error "record_overflow"

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Dealing with iRule $variables for HTTP2 workload while HTTP MRF Router is enabled

Is it possible to create a Single Pool with multiple ports ?

F5 object groups in AFM

Round-robin method not load balanced

F5 ASM with fortisandbox

Related Content

wccp configuration for SSL Orchestrator

SSL Orchestrator Service Extensions: DoH Guardian

SSL Forward Proxy – Certificate Error Graceful Failure

Introduction to BIG-IP SSL Orchestrator

SSL Profiles Part 6: SSL Renegotiation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS