For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

SysTopher's avatar
SysTopher
Icon for Nimbostratus rankNimbostratus
Nov 12, 2015

F5 message level encryption

Hey everyone,   Budding F5 admin here. We've had our new BigIP devices in production now for about 5 months and so far have had pretty typical LTM setups.   I'm attempting to replicate the co...
application delivery
availability
deployment
design
LTM
Brad_Parker's avatar
Brad_Parker
Icon for Cirrus rankCirrus
Nov 12, 2015

I believe in this case you may need to either use Proxy SSL if you need to inspect the payload on the LTM(though this had a very limited and specific cipher requirement) or setup your VIP with no SSL profiles so the encrypted traffic flows through the LTM without it being able to inspect or act on it. I hate to say it, but I really hate dealing with WCF because it always wants SSL all the way to the application.