Forum Discussion
Kevin_Stewart
Sep 08, 2015Employee
So what is the rest of the iRule doing? You may have luck with the SSL Intercept iApp, which is basically doing the same thing you're describing and can support your configuration.
So does the forward proxy source address bypass option work? You just have to create an address-based data group with each IP (as address - no value needed) that you want to bypass.
That site in particular supports TLSv1 with TLS_RSA_WITH_AES_256_CBC_SHA so any BIG-IP version (11.4 - 12.0) should be able to work. Do you know why your config isn't working for this site? have you done an ssldump capture on the server side of the proxy to see what's going on?