Forum Discussion

Dazzla_20011

Nimbostratus

Mar 25, 2011

Server-side SSL

Hi, Currently we only do client-side SSL on the F5. I've been asked if we can encrypt the traffic from the F5 to web servers. I know the F5 can do server side ssl so just wonderered if some...

config

design

markj_58101

Nimbostratus

We currently have this same setup where we are doing offloading on the LTM's, then from the LTM's to the web servers we are using the Server SSL functionality. The certs we are using on the Server SSL profile are the defaults. Everything works fine. Something that bothers me though is how this is actually working, for the Server SSL to work, the LTM is essentially acting as an SSL client to the server, correct? So how is the server decrypting the traffic from the LTM if it doesn't have the private key of default cert of the LTM?

Thank you

james_lee_31100

Nimbostratus

Apr 15, 2016

Just use default serverside ssl profile, it works fine

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Server-side SSL

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

SSL Heartbleed server side iRule

Client-side vs Server-side Load Balancing

Server Side Profile not show the certificate

Atlassian Jira Contact Administrator Server Side Template Injection (CVE-2019-11581)

Dyre presents server-side web injects

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS