Forum Discussion

Sarah's avatar
Sarah
Icon for Cirrus rankCirrus
Dec 26, 2022

HTTPS passthrough for a single domain name

Hi Everyone, I have 1x HTTPS virtual server hosting multiple applications/ domain names (e.g. X.com, Y.com, Z.com, etc.) it is configured with SSL Bridging mode (both VS and pool members are 443). ...
application delivery
irule
local traffic policy
Sarah's avatar
Sarah
Icon for Cirrus rankCirrus

Thank You Mohammed for your response.

I am looking for a way to check the domain name before processing the clientssl since the application requires client certificate for authentication. Therefore, I am not sure if the proposed solution will achieve the desired when HTTP Host is used in condition?

I found this article SNI Routing with BIG-IP explaining what I was trying to achieve, However, I have not tested it yet.

Thank you again,

Mohamed_Salah_'s avatar
Mohamed_Salah_
Icon for MVP rankMVP
Dec 29, 2022

Hello,

I think yes, you can use the host condition in the LTM policy to disable the server SSL, because F5 will check the host header after establishing the SSL connection with the client already.

 

 

Related Content