Last Modified: Nov 07, 2022
See more info
Known Affected Versions:
16.1.0, 16.1.1, 16.1.2, 184.108.40.206
Opened: Sep 16, 2021
Server-speaks-first traffic does not pass through BIG-IP SSL Orchestrator. BIG-IP does not perform a TCP three-way handshake to the server.
Connection does not succeed, client sees a reset after timeout.
SSL Orchestrator interception rule has an attached security policy that is service chaining and at-least one service has port-remap enabled.
Disable port-remap on service and redeploy.
Fix SSL Orchestrator connector to handle server speaks first traffic. After fix, server-speaks-first traffic will work even with port-remap enabled on the service.