the connection from WAF to server

Question

I have virtual server with port 443 and client certificate with pool of port 8080.

so the Connection from client to WAF is 443 with certificate (HTTPS) and from WAF to server is 8080 with no certificate (HTTP). if I access the portal via WAF, the website is working fine but if i tried to access the website directly from sever i face redirection issue http to https because i tried to access the portal with http and port 8080.

the question now, since the server have redirection issue and the page does't open unless i enter port and http in url why it's working fine with WAF? how the WAF send the request to server?

is there any way to check the request from WAF to server?

chrros95 · Answer

You can use the tcpump utility to capture the traffic on the wire. Simply use the p-modifier on the interface to capture both sides. For example

tcpdump -ni 0.0:nnnp -s0 -c 100000 -w /var/tmp/capture.pcap host 10.0.0.1

Another option is maybe to capture all http headers like https://support.f5.com/csp/article/K42210592 describes it.

mohamed_salah_ · Answer

Hello,On the waf, can you tell me what SSL profiles are you using on the virtual server? client side only or both client side and server side?Also to confirm if I understood right: when you access the server directly --&gt; http://1.1.1.1:8080&nbsp; you got redirected to https://1.1.1.1:8080 is that what is happenning?

Forum Discussion

the connection from WAF to server

2 Replies

Recent Discussions

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Port Group on F5OS network setting

Advise on setting up IRULE

F5 iRule to replace host to path

Related Content

pool members can't connect to another Virtual Server

After applied ASM Policy to Virtual Server, connections will reset with Internal error in log

F5 Connection Mirroring question

virtual server connection rate limit with tables

Virtual server connection limit with HTTP response