IBM AIX SSL Certificate Offloading

Question

I have tried to load-balanced two AIX Nodes running a secure website with no success.
We have the SSL Certificate from the nodes and we have created a Client and Server Profile for the implementation. 
Has anyone encounter stuff like this ? Any advice will be appreciated&nbsp;

kevin_stewart · Answer

The client SSL profile is going to address the user to BIG-IP SSL session. The server SSL profile is going to address the BIG-IP to server SSL session. So then the question is, which of these is causing the issue? The best option for troubleshooting here would probably be to do a capture on both sides of the BIG-IP. A tool like ssldump will give you visibility into the SSL handshake:
ssldump -AdNn -i 0.0 port 443 [and any additional filters]

You can replace the 0.0 with the name of a specific VLAN to further isolate the traffic, or add a filter that only looks at specific addresses. In most cases though, if there's an issue with an SSL handshake, it'll become apparent in one of these captures.

rest4real_13824 · Answer

Thanks Kevin.&nbsp;
The issue has been resolved. Your recommendation is very helpful&nbsp;
Regards&nbsp;

Forum Discussion

IBM AIX SSL Certificate Offloading

2 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

UCS Encryption Question

Unblock Request WAF

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

VIP in https that redirect to another vip in https

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Automating Certificate Management on F5 BIG-IP

Certificate Automation for BIG-IP using CyberArk Certificate Manager, Self-Hosted

Automating ACMEv2 Certificate Management on BIG-IP

SSL Offloading and Backend pool https

SIEM news! F5 Distributed Cloud’s remote logging adds IBM’s QRadar

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS