re-encrypt with different cipher on server-ssl profile?

Question

Is it possible to set a client ssl profile to cipher with diffie-helman and re-encrypt on the server ssl side to RSA? I presume this would be taxing on the device, but I need to understand the ins and outs of it.

al_7443 · Answer

Yes, it's supported. The LTM decrypts and re-encrypts traffic anyway so there is no huge difference in doing this. If you only have RSA in the suites accepted by your back-end server then the LTM will do it automatically. If not, create a server SSL profile with custom ciphers.

samir_jha_52506 · Answer

Yes, You can make it. Only thing you need to create two profile(client-SSL and Server-SSL) to solve issue. Allow the cipher as per requirement and test it in non-prod device.&nbsp;
Hope it will work for you.&nbsp;

Forum Discussion

re-encrypt with different cipher on server-ssl profile?

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

SSL Re-Encryption - No SSL traffic on server side

Copper SFP Differences

SSL PROFILE - How to use multiple SSL Profile Client in Virtual Server

SSL Heartbleed server side iRule

Different policies same destination and pool

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS