Sorry Server functionality only works with a secure Virtual Service, for example 443, when the traffic is offloaded. It will NOT work if the traffic is then re-encrypted.
This can cause issues in certain scenarios. For example, when load balancing a secure Virtual Service over port 443 in Azure, where you only have one IP address at your disposal, and when the back-end servers require the traffic to be re-encrypted.
A potential workaround to this situation is to make use of the LoadMaster's redirect handling feature. Here we can configure a redirect using the same domain name, but set a destination port of, for example, port 9443. You will have another Virtual Service configured to listen on this port, where your Sorry Server will reside.
Step 1. Configure Redirect Handler
Navigate to the following path in the LoadMaster Web User Interface (WUI): Virtual Service > View/Modify > Modify VS > Advanced Properties > Not Available Redirection Handling.
Error Code: 302 Found
Redirect URL: https://web.kemptest.com:9443
Step 2. Configure the Sorry Server Virtual Service
View/Modify Services > Add New
2.1 Enable SSL Acceleration
2.2 Navigate to Real Servers
View/Modify Services > Modify > Real Servers > Add New
Add Sorry Server IP address.
Set the destination port, for example port 80.
Set the Real Server Check Method to None.
To test, disable your Real Servers on your 443 production Virtual Service. You should then see a Redirect Symbol on your Virtual Service.
Make a test connection where you should now be redirected to your port 9443 Virtual Service that contains your Sorry Server.