Need to configure Https VIP without ssl offloading in F5

Aee you sending to the correct port on the server?

Do you have an https monitor on the pool? Is the pool up?

Yes pool is up and i am able to telnet the port 443 only if i am not select ssl server/client profile then i am getting page cannot displayed. if i select default client server ssl profile then i am getting forbidden access denied.

Forbidden Access denied says to me that you are getting a 403 (as in a valid HTTP response even though an error) - will leave it to you work out why 403 being returned.

Can you post your vs configuration (without the cleint/serverssl profiles)?

can you make sure your ip-protocol is set to tcp and the profile is tcp

configurations of the pools/vs will help.

What you're describing is generally called "SSL tunneling", where the client and server negotiate SSL directly and the load balancer only handles layer 4 (TCP) traffic. The configuration for this is pretty straight forward. You need a VIP with a pool. Done. Because you're not managing SSL (layer 6) traffic, you can't have any application layer profiles either (as in no HTTP profile and/or cookie persistence). The 443 traffic enters the VIP and is blindly load balanced to the 443 pool members. Your best (and really only) option for load balancing persistence is source address.

@ Kevin Stewart

( The 443 traffic enters the VIP and is blindly load balanced to the 443 pool members. Your best (and really only) option for load balancing persistence is source address. )

Can't we use SSL persistence in this scenario ?