Bug ID 1048033: Server-speaks-first traffic might not work with SSL Orchestrator

Last Modified: Dec 05, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP SSLO(all modules)

Known Affected Versions:
16.1.0, 16.1.1, 16.1.2

Opened: Sep 20, 2021
Severity: 3-Major

Symptoms

Server-speaks-first traffic does not pass through BIG-IP SSL Orchestrator. BIG-IP does not do service chaining to the service that has port-remap enabled.

Impact

Connection does not succeed, client sees a reset after timeout.

Conditions

- Interception Rule has verified accept enabled. - Security policy is service chaining and port-remap is enabled on one of the security services

Workaround

Disable port-remap on service and redeploy.

Fix Information

None

Behavior Change