ASM ICAP support for HTTPS

Question

Hi&nbsp;&nbsp;I am interested in using the ICAP for a new service that is in development, it is critical we inspect uploaded images before they reach our storage.  However, the incoming sessions will be HTTPS based and all the documents I have seen point to HTTP.&nbsp;&nbsp;&nbsp;I am assuiming, the F5 will decrypt and forward the traffic to the ICAP server and then re-encrypt it back to the target server. So long as all the SSL certificates are in the right place.&nbsp;&nbsp;&nbsp;I have not found any documents on F5 to support this assumption, has anyone used ICAP with an HTTPS service?&nbsp;&nbsp;&nbsp;Thanks&nbsp;&nbsp;&nbsp;chung&nbsp;

hooleylist · Answer

Hi Chung, 
&nbsp;  
&nbsp; I haven't tried testing this and don't have access to a lab box at the moment.  If HTTPS fails, you could probably create an HTTP virtual server on an internal VLAN.  Add a server SSL profile and a pool of the ICAP server(s).  Then point the ASM config to the HTTP virtual server. 
&nbsp;  
&nbsp; Aaron

Forum Discussion

ASM ICAP support for HTTPS

Recent Discussions

F5 - AS3 - BIGIQ / BIGIP SchemaVersion Missunderstanding

F5OS API - not able to create vlan

F5 APM - limiting access to the bandwidth for network Access

Change LB priority based on status

High CPU utilization (100%).

Related Content

ICAP inspection with SWG for HTTP and HTTPS

ICAP Method

How to disable preview if using iCAP via ASM

ICAP Over HTTPS

SPDY Support – Tools

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS