Forum Discussion

Nimbostratus

Mar 30, 2007

Changing between SSL Termination and non-SSL Termination

We have an issue where for one application we want to terminate SSL on the F5 and use cookies persistence only for one client based on the client source IP. I put together the following irul...

Cirrostratus

Apr 04, 2007

I would think that you could make layer 4 decisions (client and/or server IP and/or port) without decrypting the SSL.

Couldn't you configure a client SSL profile on the VIP, but then disable SSL for all requests but the ones that need decrypting for cookie persistence?

There should be some examples in this forum using SSL::disable (rather than SSL::profile).

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Changing between SSL Termination and non-SSL Termination

F5 Academy at AppWorld 2026

Kostas Injeyan - October 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Behavior of masterkey on rSeries

f5 client certificate forwarding

SSL Orchestrator and Layer 2 Service Integration

Ansible - Upload Certificates requires Administrator Role?

Adding metadata to certificates objects

Related Content

FTPS_SSL_ Termination

AI Friday Episode 3: Snowstorms, Truth Terminal, MCP & AGI Insights

SSL Termination

Configure NGINX microgateway for MTLS termination and client certificate hash verification

F5 BIG-IP as a Terminating Gateway for HashiCorp Consul

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS