For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Girish_HS_32793's avatar
Girish_HS_32793
Icon for Nimbostratus rankNimbostratus
Jul 23, 2008

Same VIP Multiple SSL Certs

Hi,   We have 4 http applications which are mapped to one Public IP address and I have used one Virtual IP address on my LTM to cater to these 4 application, all the 4 application use the same po...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jul 23, 2008
I think this post has the evolution of this question (Click here).

 

 

The practical answer for current versions is you can only support one certificate per virtual server. A wildcard cert for *.example.com would allow you to host a.example.com and b.example.com on the same VIP using one cert. Using Subject Alternate Names (SANs) should allow you to host abc.com and xyz.com (or app.mysite-ip.com.aa and app.mysite-ip.com.bb) on the same VIP with one cert. At some point F5 and browsers will probably support the server_name extension for TLS to allow support for multiple certs on a single IP address and port. To request F5 support this extension, you can open a case with F5 and ask them to attach it to CR94903.

 

 

Aaron