cancel
Showing results for 
Search instead for 
Did you mean: 
Login & Join the DevCentral Connects Group to watch the Recorded LiveStream (May 12) on Basic iControl Security - show notes included.

How to enable websocket secure connection for f5 vip 14.1.2.8

Danish
Altocumulus
Altocumulus

Hi Experts,

 

We have a virtual server with SSL offloading enabled. Now application will have some wss url's which needs to be allowed through F5. F5 version running is 14.1.2.8. Will this be enabled by default or any steps to enable WSS protocol on VIP. There is also a ASM profile in block mode attached to the VIP

 

Thanks a lot in advance

1 REPLY 1

eey0re
Cirrostratus
Cirrostratus

You must have Allowed WebSocket URLs to your ASM policy. Your policy might not have these added automatically, especially if it came from an earlier version of ASM.

 

Navigate to the correct partition, and then: Security > Application Security > URLs > Allowed URLs > Allowed WebSocket URLs. Ensure you have the correct policy selected from the drop down, and that there are wildcard WS/WSS URLs (or more specific ones, if you want).

 

Without any Allowed WebSocket URLs, websockets will be blocked by ASM.