Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Allwin's avatar
Allwin
Icon for Nimbostratus rankNimbostratus
Dec 22, 2020
Solved

Client Side SSL Encryption while response from F5

Hi,   I have a query, wherein, i have a application hosted behind my F5. I have configured client SSL profile so as to offload the certificate and send the traffic unencrypted to the backend serv...
application delivery
big-ip
LTM
  • Mayur_Sutare's avatar
    Mayur_Sutare
    Dec 22, 2020

    Hi,

     

    I think, application is redirecting it to http again. Can you please confirm below points ?

     

    1. Do you have F5 VS running on port 80 with same IP which is used for https VS?
    2. And you have mapped same pool/irule to above VS.

     

    If above points are true in your case, you should remove pool/irule from port 80 VS and add F5 provided http-to-https iRule to it. So F5 will again redirect that request to https.

     

Mayur_Sutare's avatar
Mayur_Sutare
Icon for MVP rankMVP
Dec 22, 2020

Hi,

 

I think, application is redirecting it to http again. Can you please confirm below points ?

 

  1. Do you have F5 VS running on port 80 with same IP which is used for https VS?
  2. And you have mapped same pool/irule to above VS.

 

If above points are true in your case, you should remove pool/irule from port 80 VS and add F5 provided http-to-https iRule to it. So F5 will again redirect that request to https.

 

Allwin's avatar
Allwin
Icon for Nimbostratus rankNimbostratus
Dec 22, 2020

Hi Mayur,

 

Yes, to both of your questions.

 

So removing the pool from VS_80 and adding the iRule to the VS_443 will ensure that the traffic is received as HTTPS only by the client correct?