cancel
Showing results for 
Search instead for 
Did you mean: 

Error directing 2nd virtual server with https to same pool used for http

SOLVED
wascott@raytheon.com
Frequent Visitor

Error directing 2nd virtual server with https to same pool used for http

From the Brocade Virtual Traffi Manager and Oracle WebLogic App deploy guide.

 

If required to run both an HTTP (unencrypted) and HTTPS (encrypted) version of an application, simply create two virtual servers that use the same default pool, one set to listen to port 443, with SSL Decryption enabled as described in the preceding section, and the other set to listen to port 80 without SSL Decryption enabled. Persistence must be enabled for both virtual servers.

 

I'm unable to create the 2nd virt server because I get the error about the pool already in use by another virtual server for http traffic.

 

I have 3 virt servers accepting http and https traffic. The https needs to be ssl term on vTM.

sending to same real servers but on different ports.

v1 (http 7700,https(443)) to pool1 (http 7700)

v2 (http 7700,https(443)) to pool2 (http 7701)

v3 (http 7700,https(443)) to pool3 (http 7702)

 

Thanks

wascott
1 ACCEPTED SOLUTION

Accepted Solutions
pwallace
Community Manager

Re: Error directing 2nd virtual server with https to same pool used for http

Hello, I think what may be happening is that your SSL virtual server is set to the protocol “SSL (HTTPS)” - so your vTM is expecting to receive HTTPS and forward HTTPS traffic. I guess you intend that your vTM will expect to receive HTTPS - but will decrypt to HTTP, and then forward to the same pool as the HTTP virtual server?

Suggest that for each service, you:
- Create the two virtual servers, say “vs-http” and “vs-https”
- Both servers should be set to protocol “HTTP”
- For the virtual server “vs-https” you can enable SSL decryption so that it accepts HTTPS, terminates the SSL, and forwards as HTTP
- Point both virtual servers to the same pool “pool-http”

Alternatively, would it be simpler to redirect HTTP traffic to HTTPS?
- Create the two virtual servers, say “vs-http” and “vs-https” both set to HTTP, as above
- For the “vs-http” server, set up a simple redirect rule to “vs-https” server
- Then you only need to create one set of rules and policies, in the “vs-https” server
- Which would be easier to manage moving forward

 

Does that work?

 

View solution in original post

1 REPLY 1
pwallace
Community Manager

Re: Error directing 2nd virtual server with https to same pool used for http

Hello, I think what may be happening is that your SSL virtual server is set to the protocol “SSL (HTTPS)” - so your vTM is expecting to receive HTTPS and forward HTTPS traffic. I guess you intend that your vTM will expect to receive HTTPS - but will decrypt to HTTP, and then forward to the same pool as the HTTP virtual server?

Suggest that for each service, you:
- Create the two virtual servers, say “vs-http” and “vs-https”
- Both servers should be set to protocol “HTTP”
- For the virtual server “vs-https” you can enable SSL decryption so that it accepts HTTPS, terminates the SSL, and forwards as HTTP
- Point both virtual servers to the same pool “pool-http”

Alternatively, would it be simpler to redirect HTTP traffic to HTTPS?
- Create the two virtual servers, say “vs-http” and “vs-https” both set to HTTP, as above
- For the “vs-http” server, set up a simple redirect rule to “vs-https” server
- Then you only need to create one set of rules and policies, in the “vs-https” server
- Which would be easier to manage moving forward

 

Does that work?

 

View solution in original post