Can I ssl passthrough with LTM connecting to kubernetes?

Question

Hi, I'm working on applying LTM to kubernetes cluster, and I have a question.

I want to setup f5 BIG-IP controller with cluster mode, but if I do so, because of lack of virtual server's type configuration, virtual server will be standard type. I know L4 virtual server can passthrough, and I used to do. But now, on the standard virtual server, I have never been able to passthrough ssl. Are there any way to passthrough ssl with kubernetes cluster? Or can I manage virtual server type?

kevin_davies · Answer

Passthrough SSL on a standard virtual server simply means not applying any server or client SSL profile. It simply works.

yk1 · Answer

Thank you for your early reply, Kevin.&nbsp;I tried it but my server wouldn't reply to client hello... I use tcpdump in the pod, and the request seems not to reach to the pod. The server send ACK to client hello, but doesn't send server hello. When I send request by curl to service's IP(in one of my cluster node), in other words when the request doesn't through BIG-IP, I can get index page(it worked)...

stan_piron · Answer

If the server does not support ssl (no answer to client hello), why do you want to enable ssl passthrough?

yk1 · Answer

Our server should support ssl (curl in Kubernetes cluster with service IP and 443 https port return correct response). Only when attempting to through BIG-IP, server would not answer to client hello.

yk1 · Answer

Capturing by Wireshark, I found that server sent Reset flag. Why the server force to disconnect? I have no idea...

Forum Discussion

Can I ssl passthrough with LTM connecting to kubernetes?

6 Replies

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

F5 Distributed Cloud Kubernetes Integration: Securing Services with Direct Pod Connectivity

Securely connecting Kubernetes Microservices with F5 Distributed Cloud

Multi‑Cluster Kubernetes App Delivery Made Simple with F5 BIG‑IP CIS & Nutanix Kubernetes Platform

BIG-IP Next for Kubernetes CNFs deployment walkthrough

Future-Proofing Kubernetes Routing: From Standard Ingress to Role-Based CRDs

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS