Forum Discussion

Nimbostratus

Oct 19, 2012

Regular SSL/TLS for user connections to the LTM, with SNI support from LTM to the real webservers?

Hi there -- We have a client base that we truly can't force to support TLS SNI for HTTP traffic. However, we'd like to limit the number of IPs we put on our backend webservers. I'm wondering if ...

config

design

Kevin_Stewart

Employee

Oct 19, 2012

Try the Host header replacement method I described without setting the Server Name field. Still looking into why this works though.

Have you considered wildcard or SAN certs for the client SSL profile(s)?

Also curious why you're doing SNI on the back end.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

CIS

container ingress services

devops

Gateway Fabric

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

announcement

Appworld2026

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

Regular SSL/TLS for user connections to the LTM, with SNI support from LTM to the real webservers?

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

can't access on prem dns when using F5LTM as a gateway

Issue with TLS Version 1.1 Deprecated Protocol

Service discovery is not happening in AS3

Load balanced RDP VIP use in APM

Deleting an AS3 Tenant

Related Content

Advanced iRules: Regular Expressions

Parameter Value - Regular Expression

LTM Monitoring IIS and Webserver Binding

Site-to-Site Connectivity in F5 Distributed Cloud Network Connect – Reference Architecture

Using Perl Compatible Regular Expressions (PCRE) in Protocol Inspection Custom Signatures

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS