Forum Discussion

Nimbostratus

Aug 12, 2020

SSL issue

Hello there, We have a F5 LTM and a virtual server configured to a server in port 443, the topology is: Computer --> F5 LTM --> switch --> server When we try to connect to the server thr...

Employee

Sep 01, 2020

Your virtual server is very simple with no profiles that should interfere.

Telnet isn't a good test for SSL connections other than stating that the port is open, use openssl or another utility to test the connection.

You have to have some sort of SNAT translation enabled because your virtual server and pool member exist on different networks. Automap should be fine assuming you have a valid self-ip configured.

The F5 is not manipulating the SSL handshake and especially not the http traffic considering it can't decrypt any of it due to SSL passthrough being configured here.

Given the very simple configuration of the virtual server this would seem to be more likely an issue with the server or device between F5 and server.

You can take a capture with F5 'noise' to see the reset cause:

tcpdump -s0 -ni 0.0:nnnp host 10.1.7.x and host source_ip

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL issue

Recent Discussions

Which process is consuming higher CPU

F5 Health Monitor Receive String as JSON

Background Tasks

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Related Content

Regex issue

F5 GTM resolution issue

Check a Virtual Server's SSL Status

Integrating SSL Orchestrator with CheckPoint Firewall VM-Explicit Proxy

Achieving an SSL Labs A+ score with F5 products

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS