Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

wss

3 Topics

WSS LTM not passing data correctly
Hi, i'm having some trouble about running an Virtual Server in front of a K3s ingress. I've setted up 4 virtual server, all point to the same destination address, but different port (different pool but final address is the same, only change the port) For Http/s, MQTT/s zero problem, but when i'm trying to redirect the http traffic using websocket i've several problem. Destination return several errors based on the Virtual Server tuning. Actually i've the virtual server configured in TCP with HTTP profile (Websocket enable both client and server) and in security profile i've created a wss security to allow * addresses (HTTP,HTTPS,WS,WSS) But when we try the application it return ERR_TRUNCATE_HEADERS. I've also create a new http profile based on the default, to increse the size of che Header Payload. Also no i'm not checking the payload, and ignore any possible malformed packet (just to let everything pass). On the application event log i can see all the request and i see the green thick so i suppose that everything is fine on the F5 side. How can i be sure of that? Is there a way to do extra check or am i missing something? Thank you guys. Paolo
Solved
paolodaniele
Sep 19, 2022 Place Technical Forum
2.1KViews
0likes
10Comments
Issues with reverse proxying the application using socket.io and Secure Websockets
Hello, I am trying to setup a reverse proxy for the application written with socket.io which tries to upgrade the connection to Secure Websockets. Looking at the docs WSS should be supported in BIG-IP 11.5.4, however I am getting some connection errors as per below (trace from the Firebug): The connection to wss://host.example.com/launchpad/socket.io/?EIO=3&transport=websocket&sid=GTQLD62vWeuwQwIzAAIp was interrupted while the page was loading. socket.io.js (line 3, col 1049) Are there any limitations known when using LTM and WSS ? In my existing lab configuration I am using both rewrite rules and stream profiles to rewrite URLs. Thanks a lot for any comments Regards
wwojcik_298555
Mar 16, 2017 Place Technical Forum
408Views
0likes
0Comments
Wss traffic not going through when html profile in use
Hi Team Hope everyone is doing well. I have a setup of F5 asm n f5 ltm and application uses wss protocol after initial login. I am using html profile n stream profile to manipulate the html contents of html page. And when using ltm alone with just wss profile and asm, everything is working but when I add the html profile where I have chose to remove some of the tags and stream to replace some of the strings, but we do want to apply asm on the wss content as well, so dnt want to remove http profile when wss upgrade header is seen. And I did try applying html profile to the login page alone by fetching the uri from request and checking it in response but for some reason, after login where wss protocol upgrade takes place, the application doesn't work.
Dran
May 11, 2020 Place Technical Forum
298Views
0likes
0Comments