Hi there....I am having a small issue....I have a web app that is https based....I have installed the cert on the CSS, and DNS for this app points to the VIP....the client is wanting to have an https front end, and then load balance in http to the backend servers....the issue I am running into is that this only works if I have an active port 80 rule on that same VIP....if I suspend the port 80 rule and only leave the port 443 rule active on that VIP, it doesn't work....please see appropriate config portions below....Thanks in advance!

Sandeep

ANy suggestions? I have been trying this for a couple of days now...it works fine if the backend sessions are also https, but the client has changed their requirement....

ssl-proxy-list SSL1

ssl-server 1

ssl-server 1 rsakey app1-test

ssl-server 1 rsacert app1-test

ssl-server 1 vip address 10.19.55.10

ssl-server 1 cipher rsa-with-rc4-128-md5 10.19.55.10 81

backend-server 1

backend-server 1 port 81

backend-server 1 server-ip 10.19.55.132

backend-server 1 ip address 10.19.55.132

backend-server 2

backend-server 2 port 81

backend-server 2 server-ip 10.19.55.133

backend-server 2 ip address 10.19.55.133

backend-server 3

backend-server 3 port 83

backend-server 3 server-ip 10.19.55.132

backend-server 3 ip address 10.19.55.132

backend-server 4

backend-server 4 port 83

backend-server 4 server-ip 10.19.55.133

backend-server 4 ip address 10.19.55.133

backend-server 5

backend-server 5 port 85

backend-server 5 server-ip 10.19.55.132

backend-server 5 ip address 10.19.55.132

backend-server 6

backend-server 6 port 85

backend-server 6 server-ip 10.19.55.133

backend-server 6 ip address 10.19.55.133

active

service webserver002:81

ip address 10.19.55.132

port 81

keepalive port 2199

keepalive type tcp

protocol tcp

active

service webserver003:81

ip address 10.19.55.133

port 81

keepalive port 2199

keepalive type tcp

protocol tcp

add ssl-proxy-list SSL1

active

service webserver002:83

ip address 10.19.55.132

port 83

add ssl-proxy-list SSL1

keepalive port 2399

keepalive type tcp

protocol tcp

active

service webserver003:83

ip address 10.19.55.133

port 83

keepalive port 2399

keepalive type tcp

protocol tcp

add ssl-proxy-list SSL1

active

service webserver002:85

ip address 10.19.55.132

port 85

add ssl-proxy-list SSL1

keepalive port 2599

keepalive type tcp

protocol tcp

active

service webserver003:85

ip address 10.19.55.133

port 85

keepalive port 2599

keepalive type tcp

protocol tcp

add ssl-proxy-list SSL1

active

service SSL_Front

slot 2

type ssl-accel

keepalive type none

add ssl-proxy-list SSL1

active

owner app1-test

content app-test_back

vip address 10.19.55.10

add service webserver002:81

add service webserver003:81

add service webserver002:83

add service webserver003:83

add service webserver002:85

add service webserver003:85

balance aca

protocol tcp

port 81

active

content app1-test_front

vip address 10.19.55.10

application ssl

add service SSL_Front

protocol tcp

port 443

advanced-balance ssl

balance aca

active