Bug ID 764745: BIG-IQ is unavailable when accessing it over a VPN with HTTP/2 enabled

Last Modified: Nov 22, 2021

Bug Tracker

Affected Product:  See more info
BIG-IQ Platform(all modules)

Known Affected Versions:
6.1.0

Fixed In:
7.0.0

Opened: Mar 25, 2019
Severity: 4-Minor

Symptoms

BIG-IQ ships with HTTP/2 enabled. Under certain circumstances, you might not be able to access BIG-IQ over a VPN and you see a 'User Session Terminated' message.

Impact

You cannot access BIG-IQ.

Conditions

When you try to access a BIG-IQ over a VPN.

Workaround

To work around this issue, edit the /etc/webd/webd.conf file to remove the http2 references. 1. Look for these two lines: listen [::]:443 ipv6only=on ssl http2; listen *:443 ssl http2; 2. Remove the http2 references, so the lines now read: listen [::]:443 ipv6only=on ssl; listen *:443 ssl; 3. Then, from the BIG-IQ console, restart webd: bigstart restart webd webd restarts, which should take only a few seconds.

Fix Information

HTTP/2 is now disabled by default, so this issue no longer occurs.

Behavior Change