load-balancing java based microservices for https based api's via f5

Question

The requirement is to have java based micro services run on particular same port say 8080 on 2 VM's and the load to be load balanced using F5 load balancer. say vm1.man.com:8080 and vm2.man.com:8080&nbsp;
But I am confused with the requirement being to accept HTTPS request. Questions are&nbsp;
Where to have the certificate installed? At the F5 or At the microservice?
Whether 1 common certificate with vm1.man.com, vm2.man.com, and  added as SAN's and installed in both Microservices would suffice?
Would adding the Static IPs of the VM's and F5 to certificate help?&nbsp;

daniel_wolf · Answer

The certificate should be assigned to the virtual server, no SAN certificate required. The certificate only needs  in the CN, it is not required to put the real server names.&nbsp;
Also no need to install certificates on the servers running the java-bases micro services.&nbsp;
The two VMs go into the pool and the virtual server can be configured to do SSL offloading.
SSL is terminated at the F5 and the communication towards the java-bases micro services can be HTTP / port 8080.&nbsp;

Forum Discussion

load-balancing java based microservices for https based api's via f5

Recent Discussions

ASM Export JSON - size Limit ?

Can i apply ddos profile on virtual server using port range

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

'F5 rules for AWS WAF' ruleset not working for jsp web shell attack

Related Content

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

Load Balancing TCP TLS Encrypted Syslog Messages

NGINXaaS for Azure: Load Balancing

Load Balancing WebSockets

Securely connecting Kubernetes Microservices with F5 Distributed Cloud

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS