Forum Discussion

Oleg_68955's avatar
Oleg_68955
Icon for Nimbostratus rankNimbostratus
Nov 05, 2012

SSL issue with LTM

Hi there,

 

I have a problem configuring a pool on our LTM using port 443. I'm new to Big-IP, but there's no one in the company that can help me with that issue, so I post here. Excuse me if that's not the right place for that kind of question.

 

The load balncer is Big-IP LTM 9.1.2.

 

What I've done:

 

I created a health monitor for the pool that has authentication set up with username and password. The heallth monitor works because I can see that the pool is available. The pool has only one member for now. I have the node up and running, created also the virtual server and assigned the new pool to it. The node has servlet that listens at port 443.

 

When I try to open https://mysite.com/Servlet in the browser in just timed out.

 

When I write the adress of the pool member, it works.

 

I tried to test the configuration running:

 

curl -v --user username https://mysite.com/Servlet

 

and I've got:

 

curl -v --user username https://mysitecom.com/Servlet

 

Enter host password for user 'myuser':

 

* About to connect() to mysite.com port 443 (0)

 

* Trying x.x.x.x... connected

 

* Connected to mysite.com (x.x.x.x) port 443 (0)

 

* SSLv3, TLS handshake, Client hello (1):

 

* Unknown SSL protocol error in connection to mysite.com:443

 

* Closing connection 0

 

curl: (35) Unknown SSL protocol error in connection to mysite.com:443

 

When I run the same curl commabd on the big-ip console I got the right answer from the servlet.

 

I suspect that is some SSL protocol issue on the big-ip but I'm not sure where to look. This load balancer is production device and I can't poke around without knowing what I'm doing.

 

Any ideas or hints?

 

Thank you.