Forum Discussion

Nimbostratus

Oct 23, 2007

Serving alternative SSL certs from one virtual server

Morning, We've run into a problem redirecting https traffic to a virtual server to http servers on the backend. We use an iRule to inspect the HTTP header, and redirect a.com to port 80 on t...

Cirrostratus

Oct 24, 2007

You can only have one public facing certificate per virtual server. You must present the certificate to the client in order to decrypt the SSL and see what they requested in the Host header.

There was a recent post (Click here) which mentioned using multiple SubjectAlternateNames (SANs) to answer for multiple hostnames within the same cert. You can check that post for details.

You could use a wildcard cert if the hostnames are all on the same domain.

Else, you'd need to break out each domain/cert to a separate SSL enabled virtual server.

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Serving alternative SSL certs from one virtual server

Introducing the F5 Application Study Tool (AST)

Displaying Application Study Tool (AST) Dashboards in Your Own Grafana Instance

Recent Discussions

Audit Logging on LTM and GTM

Change Content-Type from application/octet-stream to multipart/form-data

Problem with sending BotDefense logs to remote server

What dose "Accept" do in BIG-IP ASM event logs

OSPF traps on BIG-IP v14

Related Content

Free Passes to AppWorld 2025 – First Come, First Served!

iRule to serve security.txt file - RFC 9116

F5 RHI Solution an alternative to GSLB load balancing between Datacenters

F5 Distributed Cloud: Virtual Sites - Regional Edge (RE)

Re: VMware to Red Hat OpenShift Virtualization Migration

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS