Bug ID 764745: BIG-IQ is unavailable when accessing it over a VPN with HTTP/2 enabled

Last Modified: Jul 12, 2023

Affected Product(s):
BIG-IQ Platform(all modules)

Known Affected Versions:

Fixed In:

Opened: Mar 25, 2019

Severity: 4-Minor


BIG-IQ ships with HTTP/2 enabled. Under certain circumstances, you might not be able to access BIG-IQ over a VPN and you see a 'User Session Terminated' message.


You cannot access BIG-IQ.


When you try to access a BIG-IQ over a VPN.


To work around this issue, edit the /etc/webd/webd.conf file to remove the http2 references. 1. Look for these two lines: listen [::]:443 ipv6only=on ssl http2; listen *:443 ssl http2; 2. Remove the http2 references, so the lines now read: listen [::]:443 ipv6only=on ssl; listen *:443 ssl; 3. Then, from the BIG-IQ console, restart webd: bigstart restart webd webd restarts, which should take only a few seconds.

Fix Information

HTTP/2 is now disabled by default, so this issue no longer occurs.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips