port forwarding on SSL pass through VIP

Question

Hello, &nbsp;
Can you please assist to configure Standard SSL VIP where i need to transfer any request which is coming to SSL port to port 8443, my servers are configured with port 8443. VIP is SSL pass through (No SSL offload on F5). I need to configure source address persistence also for this VIP. &nbsp;
Does this configuration work: &nbsp;
Pool members with port 8443
VIP with SSL (443 )
Under Resources : pool members with 8443 as default pool&nbsp;
Thanks,&nbsp;

kevin_stewart · Answer

SSL tunneling (no SSL offload) simply requires that you not assign a client and/or server SSL profile to the VIP, and that you not apply any layer 7 protocol profiles to the VIP as well (ie. HTTP). Address and port translation are layer 4 functions. So in your case, you simply need a pool of servers listening on any port (port translation is default enabled), a VIP listening on port 8443, and a generic source address persistence profile applied.

Forum Discussion

port forwarding on SSL pass through VIP

1 Reply

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

Policy to forward to a range of ports

SMTP Traffic Forward to M365 on Port 587

Forward traffic based on TCP Port - LTM Policy

SSH forward proxy

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS