Bug ID 764745: BIG-IQ is unavailable when accessing it over a VPN with http/2 enabled

Last Modified: Jul 15, 2019

Bug Tracker

Affected Product:  See more info
BIG-IQ Platform(all modules)

Known Affected Versions:
6.1.0

Opened: Mar 25, 2019
Severity: 4-Minor

Symptoms

BIG-IQ is shipped with http/2 enabled. Under certain circumstances, you might not be able to access BIG-IQ over a VPN and you will see a "User Session Terminated" message.

Impact

You cannot access BIG-IQ.

Conditions

When you try to access a BIG-IQ over a VPN.

Workaround

To work around this issue, edit the /etc/webd/webd.conf file. Look for these two lines: listen [::]:443 ipv6only=on ssl http2; listen *:443 ssl http2; Remove http2 references so the lines now read: listen [::]:443 ipv6only=on ssl; listen *:443 ssl; Then, from the BIG-IQ's console, run "bigstart restart webd". webd restarts, which should only take a few seconds.

Fix Information

None

Behavior Change