Last Modified: Jul 12, 2023
Known Affected Versions:
14.1.0, 18.104.22.168, 22.214.171.124, 126.96.36.199, 188.8.131.52
Opened: Feb 01, 2019 Severity: 3-Major
Category lookup returns the wrong category on subsequent traffic following initial HTTP CONNECT traffic through F5 SSL Orchestrator (SSLO).
Category Match is not performed on subsequent requests, resulting in fallback branch to be taken.
-- Outbound deployment configured in SSLO, where SSLO behaves as a transparent proxy. -- A policy has a branch to lookup category using HTTP Connect. -- An HTTPS client generates HTTPS traffic via an explicit proxy on the local network with a private address through SSLO as the gateway.
Category lookup now works correctly in this scenario.