Forum Discussion

Nimbostratus

Sep 14, 2009

ssl - profile

Here is what i want to do : We have SNAT pool configured on our big ip so i use "X-forward-for" http header to log actaul client ip in web server. Now i want to do it for HTTPS. ...

management

monitoring

Singh_74932

Nimbostratus

Sep 17, 2009

Thanks hoolio as always .. that raise another query in my mind:

Purpose of SNAT that i can think of are :

1. Your webserver cannot route directly to outside world so it send it back to bigip and big ip send it to outside world.

2. In case there is no SNAT then webserver will directly send it back to client rather then sending it via big ip. Not sure how this is not secure ??

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ssl - profile

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

JSON Web Key Set Endpoint

Related Content

SSL Profiles Part 6: SSL Renegotiation

SSL Profiles Part 5: SSL Options

SSL Profiles Part 8: Client Authentication

SSL Profiles Part 7: Server Name Indication

SSL Profiles Part 1: Handshakes

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS