Forum Discussion

neeeewbie's avatar
neeeewbie
Icon for MVP rankMVP
Apr 11, 2023

chatgpt sent 403 forbidden response code when client access via sslo

Hi guys 

I need your help ! 

chatgpt sent 403 forbidden response code when client access via sslo

I guess chatgpt API connection can't established becuase of proxy setting 

please let me know the reason

thank you

application delivery
security

18 Replies

Sort By
  • LiefZimmerman's avatar
    LiefZimmerman
    Icon for Admin rankAdmin
    Jun 20, 2023

    neeeewbie and/or sugiyama_san - is there one or more replies that you may Accept As Solution? Seems like the thread may not be done but...even a partial solution (or further update?) could help future users trying to leverage ChatGPT.
    Thanks, Lief

    • neeeewbie's avatar
      neeeewbie
      Icon for MVP rankMVP
      Jun 21, 2023

      firefox browser user can access the chatGPT without http2 profile

      other browser need http2 profile

      • sugiyama_san's avatar
        sugiyama_san
        Icon for Altocumulus rankAltocumulus
        Jul 12, 2023

        Hi @neeeewbi and LiefZimmerman

        Sorry for the delayed response. I have checked to ensure that there are no issues with the actual modifications made.

        I created a verification environment that closely resembles the actual service provision,
        and after applying the settings,
        I was able to confirm that it worked as expected, and ChatGPT was available for use.


        made the following changes to the 'Client Profile' used in the 'SSL Configuration'.

        Bigip Ver 16.1  (SSLo Ver 9.3)

        SSL Forward Proxy > Hello Extensions
        Extentions List...
        Application-Layer Protocol Negotiation Enable

         

        Thanks!!

    • neeeewbie's avatar
      neeeewbie
      Icon for MVP rankMVP
      Apr 12, 2023

      working well when I configure bypass destination IP (chatgpt ip address)
      but our customer wnat to see the all packet  

       

      • buulam's avatar
        buulam
        Icon for Admin rankAdmin
        Apr 12, 2023

        I think the site leverages OAuth. Are you able to tell if the login is passing through?

    • sugiyama_san's avatar
      sugiyama_san
      Icon for Altocumulus rankAltocumulus
      Aug 28, 2023

      Hi Kevin_Stewart

      The configuration I'm using in my SSLo involves decrypting HTTPS traffic, forwarding it to an explicit proxy (McAfee Web Gateway) for security inspection, and then re-encrypting it.

      Enabling the ProxyALPN option allowed me to use the desired ChatGPT. However, all the traffic using HTTP/2 to communicate ceased flowing to the explicit proxy on the SSLo service chain side.

      Is there a way to resolve this issue and restore the flow of traffic using HTTP/2 to the explicit proxy within the SSLo service chain?