Bug ID 666868: SSL Orchestrator sometimes closes client and server connections after SSL handshake is completes

Last Modified: Nov 07, 2022

Bug Tracker

Affected Product:  See more info
BIG-IP TMOS(all modules)

Known Affected Versions:
12.1.0, 12.1.0 HF1, 12.1.0 HF2, 12.1.1, 12.1.1 HF1, 12.1.1 HF2, 12.1.2, 12.1.2 HF1, 12.1.2 HF2, 12.1.3,,,,,,,, 12.1.4

Fixed In:

Opened: May 26, 2017
Severity: 3-Major


The SSL Orchestrator iApp 1.5 can sometimes close client- and server-side connections after the SSL handshake completes.


The impact is that the client browser will not see the requested web page load even though the client and server have successfully setup a connection through the BIG-IP system.


The problem can occur when there is a mismatch between the SSL orchestrator view and TMM view of the SSL server certificate cache.


SSL Orchestrator end user can refresh the client browser to load the page.

Fix Information

There is a new iRule command to enable the SSL Orchestrator iApp to read the server certificate directly rather than maintaining a separate cache of server certificates.

Behavior Change