Bug ID 757360: Category lookup returns wrong category on subsequent traffic following initial HTTP CONNECT traffic through SSLO

Last Modified: Mar 21, 2019

Bug Tracker

Affected Product:  See more info
BIG-IP APM(all modules)

Known Affected Versions:
14.1.0, 14.1.0.1, 14.1.0.2, 14.1.0.3

Opened: Feb 01, 2019
Severity: 3-Major

Symptoms

Category lookup returns wrong category on subsequent traffic following initial HTTP CONNECT traffic through SSLO

Impact

Category Match is not performed on subsequent requests, resulting in fallback branch to be taken.

Conditions

1. Outbound deployment configured in SSLO where SSLO behaves as a transparent proxy. 2. A policy has a branch to lookup category using HTTP Connect 3. An HTTPS client generates HTTPS traffic via an explicit proxy on local network with private address through SSLO as the gateway

Workaround

None

Fix Information

None

Behavior Change