SSL offloading not working with X-Forwarded-Proto

Question

Hi we are trying to SSL offload on F5 using the following iRule but it seems its not changing the header X-Forwarded-Proto
when HTTP_REQUEST {
  HTTP::header insert "X-Forwarded-Proto" "https"; 
}

We are getting the following 400 response from server
Bad Request

Your browser sent a request that this server could not understand.
Reason: You're speaking plain HTTP to an SSL-enabled server port.
Instead use the HTTPS scheme to access this URL, please.

Hint: https://www.website.com/

Any idea?

tatmotiv · Answer

It seems as if you're trying to talk plain, unencrypted http to an https service on the server. You should either enable a server side ssl-profile for this virtual or change the destination port of your pool members to the one that is listening for unencrypted http.

Forum Discussion

SSL offloading not working with X-Forwarded-Proto

Recent Discussions

Management IP F5 cant be accessed

ASD

Big-IP VE edition for MacBook M4 Chip

301 redirect and waf policy log problem

Background Tasks

Related Content

HTTP Header Rewrite - X-Forwarded-Proto

X-Forwarded-Proto on policy

SSL Offload with HTTP/2.0

HTTPS offload rewriting

FTPS Offload via iRules

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS