SSL Handshake failure between F5 and Back end Nginx server

Question

Hi, 
We have load balanced the Nginx server through F5. Configured the Pool members and also create the VS.&nbsp;
The connection between the Client and F5 is HTTPS and The connection between the F5 and Server is also the HTTPs. &nbsp;
We have added the SSL certificate on the client and Server profiles.when we request the F5 we do not get any respond from the server. &nbsp;
When we seen the packet capture between the F5 and Server there is SSL handshake failure.&nbsp;
-&gt; 7326.58908310.50.81.4610.50.81.71TLSv1.2240Client Hello&nbsp;
-&gt; 7426.58936610.50.81.7110.50.81.46TCP156443→52469 [ACK] Seq=1 Ack=85 Win=14600 Len=0&nbsp;
-&gt; 7526.58995210.50.81.7110.50.81.46TLSv1.2163Alert (Level: Fatal, Description: Handshake Failure)&nbsp;
What is the reason for that. Kindly help me in resolving the issue.&nbsp;

snl · Answer

please check you server ssl profile , there might be mismatch in TLS or cipher&nbsp;
try to access the VS without any client and server ssl profile and see you are able to access if yes , then monitor the statistics of client and server ssl profile &nbsp;
Good luck&nbsp;

jad_tabbara__j1 · Answer

Hello faizan,&nbsp;
Which SSL server profile are you using ? &nbsp;
Try to use the "insecure-ssl-cert" that will accept depreciated TLS version and ciphers&nbsp;
Hope it helps&nbsp;
Regards&nbsp;

Forum Discussion

SSL Handshake failure between F5 and Back end Nginx server

Recent Discussions

how to whitelist new source IP on F5 web UI access

F5 to read a combined CRL file

Upgrade F5 BIGIP

ISP Load Balancing, SNAT pool instead of Automap link self-ip, anyway to do health check ?

MAC address of deleted VS IP address still responsive

Related Content

BIG-IP Proxy SSL 12.1 Handshake Failure

SSL handshake failure using serverssl (F5 and Citrix Netscaler)

SSL Profiles Part 1: Handshakes

Monitoring Failure OAuth request

TCP Internals: 3-way Handshake and Sequence Numbers Explained

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS