Forum Discussion

Nimbostratus

Nov 17, 2011

Encrypting HTTP traffic to SSL on LTM

We're about to leverage our LTM's for a partnership, and need to know how to take unencrypted traffic and encrypt it. Basically what we're doing is: -Traffic will come in from our ...

config

design

hooleylist

Cirrostratus

Nov 17, 2011

Hi,

For the partner (HTTPS) -> LTM -> (HTTP) app traffic you can create a virtual server on port 443 with a client SSL profile pointing to a pool of the server(s) on port 4000. The replies will follow the reverse path. If your server(s) have their default gateway set to the LTM floating self IP, you don't need SNAT. If that's not the case, then use SNAT on the virtual server.

For the app (HTTP) -> LTM -> (HTTPS) partner traffic, you can create an HTTP virtual server with a server SSL profile pointing to a pool of the partner server(s) on port 443. You'll need to use SNAT on this virtual server. You'll also need a TMM route (or default route) to get to the partner network.

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Encrypting HTTP traffic to SSL on LTM

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Encrypted cookies on strict uri

Inspecting Oauth2 or SAML https traffic by the ASM

Logging TLS traffic less than TLSv1.2

Traffic Shaping and Atlassian Jira

Floating IPs on new traffic group members

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS