Forum Discussion

Nimbostratus

Aug 09, 2010

How to terminate and pass through SSL via HTTP:Host on single VS

Have a single VS that is currently listening on 443 and passing ssl through to the servers on 443 using domain name 'a' on the ssl cert. The ssl cert lives on the internal servers for domain nam...

Nimbostratus

Aug 09, 2010

Hi Aaron,

Would it be possible to have the VS always initially attempt to decrypt with the VS's client ssl cert and if it cant, through an irule event catch/trap, then stop trying and pass/node/pool the connection still encrypted to the member on port 443 for server based SSL handling?

This would not require that the requested host be seeable, but rather a binary process of elimination.

Does that make sense? Not sure if I made that clear in the last post as it is really what sets this apart.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

How to terminate and pass through SSL via HTTP:Host on single VS

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

iControl for Gtm wideip

About F5 idle timeout and keep-alive

Problem with sending BotDefense logs to remote server

OSPF traps on BIG-IP v14

[APM] - How to clear the cached certificate for specific url

Related Content

AI Friday Episode 3: Snowstorms, Truth Terminal, MCP & AGI Insights

FTPS_SSL_ Termination

Configure NGINX microgateway for MTLS termination and client certificate hash verification

SSL Termination

Invalid Content-Length header caused Big-IP to terminate connection?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS