Last Modified: Apr 28, 2025
Affected Product(s):
BIG-IP LTM, SSLO
Fixed In:
16.0.0
Opened: Jul 21, 2016 Severity: 4-Minor
HTTP Explicit proxy forwards only CONNECT requests to the listeners on a configured tunnel. An iRule is required whenever there is a need to send all other request types to the tunnel.
iRule is required, which impacts performance.
-- Using HTTP Explicit proxy. -- Sending send non-TLS via TCP tunnel.
None.
There is now an option to manage this behavior.
There is a new option 'Use tunnel on any request method' in the HTTP Explicit Proxy profile. When the option is enabled, all incoming HTTP requests are forwarded to virtual servers listening on the tunnel. In previous releases, only CONNECT requests were sent to the tunnel). The default value is 'no', which preserves the behavior from previous releases.