For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Moinul_Rony's avatar
Moinul_Rony
Icon for Altostratus rankAltostratus
Sep 23, 2014

SSL offloading not working with X-Forwarded-Proto

Hi we are trying to SSL offload on F5 using the following iRule but it seems its not changing the header X-Forwarded-Proto

when HTTP_REQUEST {
  HTTP::header insert "X-Forwarded-Proto" "https"; 
}

We are getting the following 400 response from server

Bad Request

Your browser sent a request that this server could not understand.
Reason: You're speaking plain HTTP to an SSL-enabled server port.
Instead use the HTTPS scheme to access this URL, please.

Hint: https://www.website.com/

Any idea?

application delivery
devops
iRules

1 Reply

  • tatmotiv's avatar
    tatmotiv
    Icon for Cirrostratus rankCirrostratus
    Sep 23, 2014

    It seems as if you're trying to talk plain, unencrypted http to an https service on the server. You should either enable a server side ssl-profile for this virtual or change the destination port of your pool members to the one that is listening for unencrypted http.