Forum Discussion

Dazzla_20011

Nimbostratus

Mar 25, 2011

Server-side SSL

Hi, Currently we only do client-side SSL on the F5. I've been asked if we can encrypt the traffic from the F5 to web servers. I know the F5 can do server side ssl so just wonderered if some...

config

design

Hamish

Cirrocumulus

Mar 31, 2011

You answered the question yourself. The server can decrypt stuff from the F5 (Client) because the shared session key (That's actually used to encrypt the traffic) is negotiated as part of the key exchange where the server uses it's own private key. The client side key doesn't get involved). The session between the LTM and the server is a completely different TLS (Or SSL) session from the client - LTM connection.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Server-side SSL

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

SSL Heartbleed server side iRule

Client-side vs Server-side Load Balancing

Server Side Profile not show the certificate

Atlassian Jira Contact Administrator Server Side Template Injection (CVE-2019-11581)

Dyre presents server-side web injects

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS