Forum Discussion

Nimbostratus

Mar 03, 2014

HTTP request/URL rewrite with ssl offload

Hello Everyone, I have a pool of web servers on my internal corporate network running a password reset service using https (certificate issued by corporate CA) and being load balanced through th...

application delivery

BIG-IP Access Policy Manager (APM)

Employee

Mar 10, 2014

First and most important, you cannot evaluate and/or touch any layer 7 HTTP data (headers, cookies, URIs, URLs, etc.) if you do not terminate the SSL at the proxy. You can optionally re-encrypt to the server, but you must at the very least have a client SSL profile applied to the F5 VIP to decrypt the SSL. So to decrypt and re-encrypt, you need both client and server SSL profiles applied to the VIP. Once you have that in place, and working, you can apply an iRule to change the HTTP Host header in the request.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)