Forum Discussion

Altostratus

Nov 20, 2017

URI Rule in Rewrite profile disable Server SSL profile?

Hi, Setup: TMOS 12.1.2HF1 VS listening on port 80 Server SSL profile attached Rewrite profile settings: Rewrite Mode: URI Translation Parent Profile: rewrite Request Settings: Rewr...

Cirrostratus

Nov 22, 2017

Hmm, do you mean that disabling Server SSL via LTP is not working? I had LTP where depending on request Host header Server SSL is kept enabled (two FQDNS) and disabled (one FQDN) - never noticed issue with sending unecrypted traffic to backend - but never noticed CLIENT_HELLO as well because most often my Wireshark was set with http filter :-)

I did however notice some strange errors in LTM log related to VS with LTP:

transaction failed:010716e2:3: Policy '/Common/Drafts/something', rule 'some rule'; an action precedes its conditions.

This is in fact related to rule that is not disabling Server SSL.

Piotr

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)