Forum Discussion

Dan_W__274799's avatar
Dan_W__274799
Icon for Nimbostratus rankNimbostratus
Oct 18, 2016

HTTP Profile breaking HTTPS

I have a https_vs that does not offload the SSL. I also have two pools https_pool and https_training_pool. I have to have iRules to inspect the https address for "portal.newco.com" to go to the https...
application delivery
iRules
LTM
  • Hannes_Rapp_162's avatar
    Hannes_Rapp_162
    Oct 18, 2016

    It's mandatory to offload SSL in BigIP to inspect the HTTP headers (Host, and others). There's no way around it. However, you can use serverssl profile in conjunction with clientssl to re-encrypt before the request gets forwarded to a pool member.

     

Hannes_Rapp_162's avatar
Hannes_Rapp_162
Icon for Nacreous rankNacreous

It's mandatory to offload SSL in BigIP to inspect the HTTP headers (Host, and others). There's no way around it. However, you can use serverssl profile in conjunction with clientssl to re-encrypt before the request gets forwarded to a pool member.

 

Dan_W__274799's avatar
Dan_W__274799
Icon for Nimbostratus rankNimbostratus
Oct 18, 2016

When I set it with the serverssl and clientssl then I get a certificate error on the web page, and it doesn't seem to redirect my portal vs training pages. I receive a "Connection not secure" on the pages.