Damián_41877
Aug 05, 2014Nimbostratus
How SSL client connections diverted to the servers as HTTP (clear text) or HTTPS (SSL) according to the URI
Hi
I know two basic modes for dealing HTTPS/SSL incoming client connections:
-
BIG-IP ends the SSL connection and send requests to the targer servers in "clear text" (HTTP).
-
BIG-IP is configured as passthrough. BIG-IP does not decrypt the SSL connection and SSL stream reach the target server. Target server has to encrypt/decrypt the SSL connnection stream.
Is there any way (I mean an iRule) to select mode 1 or mode 2 according to the URI?
I guess there is no one -- unless BIG-IP ends client-side SSL and create a server-side SSL connection BUT then that will not be a genuine passtrough mode.
Thanx in advance