Forum Discussion

Nimbostratus

Apr 04, 2014

Allow or Redirect HTTPS traffic based on destination domain

I have the following iRule working for http traffic on a vs allowing only port 80. I need to do the same thing for https traffic but get cert errors on the client. I have tried turning on clientssl...

Cirrostratus

Apr 07, 2014

Hi Matt,

If you want to decrypt SSL traffic destined for arbitrary FQDNs, and you have a root certificate that all client browsers trust, you can use the SSL forward proxy feature in LTM. It was added in 11.3.0:

http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-3-0/14.html

Aaron

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)