How serverssl works in serverssl profile F5 ltm

Question

Hello F5 Experts,&nbsp;
In the case where both client and server ssl profiles are enabled &amp; the F5's are in a sandwich design (i.e. One behind the other)&nbsp;
How does encryption/decryption happen in the following serverssl scenarios; where mutual auth is also enabled at both ends of the profiles.&nbsp;
1- There is no certificate in server ssl profile, there is certificate on the server.&nbsp;
2- There is certificate in server ssl profile, there is certificate on the server, both the certificates are same(Can they be same?)&nbsp;
3- There is certificate in server ssl profile, there is certificate on the server, both certificates are different(Do they need to be diff?).&nbsp;
Thanks,&nbsp;
Ajit&nbsp;

only1masterbla1 · Answer

Answers to all three queries are Yes:&nbsp;
1- There is no certificate in server ssl profile, there is certificate on the server.&nbsp;

F5 is acting as a client (similar to browser)&nbsp;

2- There is certificate in server ssl profile, there is certificate on the server, both the certificates are same(Can they be same?)&nbsp;

ssl profile certs are used only when mutual authentication is configured. But it won't server any purpose.&nbsp;

3- There is certificate in server ssl profile, there is certificate on the server, both certificates are different(Do they need to be diff?).&nbsp;

they can be different cert for mutual auth.&nbsp;

Forum Discussion

How serverssl works in serverssl profile F5 ltm

Recent Discussions

AS3 Limitations

Diameter iRules attachment?

Help needed with iRule (connection closed log )

Use of SSL Decryption.

VLAN Failsafe Functionality

Related Content

Activate serverssl profile in iRule

SSL handshake failure using serverssl (F5 and Citrix Netscaler)

Did Serverssl profile require certificate?

serverssl cipher suites

serverssl and serverssl-insecure-compatible

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS