Forum Discussion

Altostratus

Nov 20, 2017

URI Rule in Rewrite profile disable Server SSL profile?

Hi, Setup: TMOS 12.1.2HF1 VS listening on port 80 Server SSL profile attached Rewrite profile settings: Rewrite Mode: URI Translation Parent Profile: rewrite Request Settings: Rewr...

Cirrostratus

Nov 22, 2017

Hmm, do you mean that disabling Server SSL via LTP is not working? I had LTP where depending on request Host header Server SSL is kept enabled (two FQDNS) and disabled (one FQDN) - never noticed issue with sending unecrypted traffic to backend - but never noticed CLIENT_HELLO as well because most often my Wireshark was set with http filter :-)

I did however notice some strange errors in LTM log related to VS with LTP:

transaction failed:010716e2:3: Policy '/Common/Drafts/something', rule 'some rule'; an action precedes its conditions.

This is in fact related to rule that is not disabling Server SSL.

Piotr

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

URI Rule in Rewrite profile disable Server SSL profile?

Recent Discussions

Background Tasks

Which process is consuming higher CPU

SSL bridging without SSL proxy forward

Big-IP VE edition for MacBook M4 Chip

Client SSL Profile set to Require Client Certificate breaks RDP in APM

Related Content

Update your DevCentral user profile

SSL Profiles

DoS Profiles

Server Profile SNI

Rewrite profile limit on URI rules

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS