Forum Discussion
NimbostratusSSL proxy for SHA256 cert with Oracle Ebiz
We are running Oracle ebiz 12.1, which does not support SHA2 on the oracle http server (inbound connections).
We would like to use the F5 to provide the SHA256 cert, and it sounds like I need to set up a proxy.
I have the destination address, the service port (4100) Protocol as TCP SSL Profile (Client) - SHA2_wildcard_with_intermediate SSL Profile (Server) - serverssl SNAT - automap
The pool is the server we are going to, on port 4100.
When a client goes to the site - in Chrome I get "Error Code: ERR_Connection_Reset"
I have tried to create an SSL Profile (Server) using the .crt file for the server - and I assume it needs the private key for the key file?
Any ideas?
1 Reply
- nitass
Employee
I have tried to create an SSL Profile (Server) using the .crt file for the server - and I assume it needs the private key for the key file?
server is running https on port 4100, isn't it? if correct, yes you need serverssl profile.
certificate and key in serverssl profile is needed only when server does client certificate authentication.
When a client goes to the site - in Chrome I get "Error Code: ERR_Connection_Reset"
i think it may be helpful to try ssldump to see what the wrong is.
Troubleshooting TLS Problems With ssldump by George Watkins
https://devcentral.f5.com/articles/troubleshooting-tls-problems-with-ssldump
