Bug ID 720322: Intercepted HTTPS traffic isn't sent to HTTP services in SWG use cases

Last Modified: Jan 20, 2023

Bug Tracker

Affected Product:  See more info
BIG-IP SWG(all modules)

Known Affected Versions:
14.1.0,,,,,, 14.1.2,,,,,,,,, 14.1.3,, 14.1.4,,,,,,, 14.1.5,,,, 15.0.0, 15.0.1,,,,

Opened: May 16, 2018
Severity: 4-Minor


BIG-IP doesn't have SSL Orchestrator iRules in SWG use cases, and if the L7 check agent isn't added in the Per-Request Policy before Service connect agent for HTTP type services (like ICAP, Explicit HTTP or Transparent HTTP service), traffic isn't sent to these services.


Traffic isn't sent to the services.


SWG use case with Per_request Policy: Start->Service Connect ->Allow with service connect for http type services


Use the following iRule : when CLIENTSSL_HANDSHAKE { CONNECTOR::enable }

Fix Information


Behavior Change