Forum Discussion
shaggy
Jan 21, 2015Nimbostratus
are you looking to offload SSL on the F5 using the web-server's certificate, or are you looking to terminate SSL at the web-server instead of the F5?
- skethi_183651Jan 21, 2015Nimbostratusok now i understood what SSL offloading mean. We are currently doing the SSL offloading, but we dont want to do that . we want to terminate the SSL at the Web Server instead of the F5. This is only a backup approach we are trying to use for temporarily.
- shaggyJan 21, 2015Nimbostratusin the virtual server configuration of the application's virtual server configured for HTTPS, remove the clientSSL profile and serverSSL profile. When you remove a client SSL profile from a virtual server, the F5 loses the ability to examine HTTP-level data as F5 is now passing encrypted data through the F5 rather than terminating SSL and re-encrypting to pool members. Therefore, if you use any of the following features/profiles, they will also need to be removed - HTTP, oneconnect, cookie-based persistence, http-compression, stream profile, analytics profile, HTML profile, web acceleration profiles, iRules that use HTTP events/functions, LTM policy profiles that have HTTP-related statements, etc.
- skethi_183651Jan 22, 2015NimbostratusThanks, For the update but we are using iRules, we need iRules as that is what is doing the traffic routing and redirects. is there any other alternative? or what kind of iRule i can use.