Forum Discussion
NimbostratusSame SSL session over 2 TCP connection
Is there any device available where, from client to DUT 1 tcp connection will be opened and from DUT to server anothere tcp connection will be opened.But for SSL client hello will be forwarded form client-DUT tcp connection to DUT-server TCP connection.
2 Replies
Thomas_GobetHi,
Your LTM can work as a SSL forward proxy. Here is a link with a configuration example : http://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-3-0/14.html
- Kevin_Stewart
Employee
The easiest approach would probably be to simply tunnel the SSL through the device. On a BIG-IP that would be a virtual server that listens on an SSL port, that sends the traffic to pool members listening on an SSL port, and that does NOT terminate and/or re-encrpyt the SSL - no client or server SSL profiles. Layer 4 TCP is still proxied, but layer 6 SSL is passed straight through.
