For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Thomas_Schaefer's avatar
Thomas_Schaefer
Icon for Nimbostratus rankNimbostratus
Sep 24, 2009

Best Practice to let server know connection was SSL

After working with the BigIP for several years, I feel silly asking this question, but when one uses SSL acceleration and sends data to the pool members in the clear, how does the backup application k...
application delivery
dev
devops
iRules
L4L7_53191's avatar
L4L7_53191
Icon for Nimbostratus rankNimbostratus
Sep 24, 2009
Tom: at first blush your ideas are dead on the money; enforce this access at the BigIP, but also set a header that tells the application that the URI in question was accessed via SSL.

 

 

Regarding the developers, you can have your cake and eat it too: let them use iControl to maintain the URI mapping so you won't have to touch it. Write the rule one time, then let them maintain the datagroup.

 

 

-Matt