Forum Discussion
gwjr_105177
Nimbostratus
Nimbostratusdisabling SSL to one backend pool
I have a SSL Virtual server setup that will forward requests to one of 2 pools based on the Uri. Obviously I have setup a Client SSL profile on the Virtual Server but I also have a Server SSL profile ...
Alok_3817Nimbostratus
NimbostratusUse this
when HTTP_REQUEST {
set my_uri [string tolower [HTTP::uri]]
if { $my_uri starts_with "/secure" }
{
pool ssl__pool
}
else
{
SSL::disable serverside
pool static_pool
}
}
Looks like when you are using the SSL::disable alone, it is killing the Client SSL, (which is the default),
Client <--Encrypted--> | F5 (VS) ( iRule ) (POOL) F5 | <---Encrypted ---> Server (in SSL pool)
Client <-- Not Encrypted--> | F5 (VS) ( iRule ) (POOL) F5 | <--- Not Encrypted ---> Server (in Static pool)
From your requirements i thought you needed
Client <-- Encrypted--> | F5 (VS) ( iRule ) (POOL) F5 | <--- Not Encrypted ---> Server (in Static pool)
The Above iRule should help
Do let us know
