SSL Acceleration - Can I encrypt outbound traffic

Question

I know that BIG-IP can do SSL termination and optionally re-encrypt traffic, but I'm not clear from reading the documentation whether it is possible to encrypt a non-encrypted traffic stream. We have an application using SOAP and because the traffic is high volume, we'd like to use SOAP over plain http internally, and use the F5 to translate/terminate the connection, and establish an SSL connection with an external server hosted in another organisation. Is this possible?

Thanks,

Iain

hooleylist · Answer

Hi Iain, &nbsp;
&nbsp; Yes, LTM can encrypt the serverside connection regardless of whether the clientside connection is encrypted.  You can configure this with a server SSL profile on the virtual server.  You'd probably need to enable SNAT on the virtual server to ensure the external host responds back to the client via LTM.  You'll also need a route from LTM to the external host.&nbsp;
&nbsp; Aaron

iain_fyfe_38111 · Answer

Thanks Aaron - that all makes sense.&nbsp;&nbsp;Cheers,&nbsp;&nbsp;&nbsp;Iain&nbsp;

Forum Discussion

SSL Acceleration - Can I encrypt outbound traffic

Recent Discussions

ASM Sync Between 2 Data Centers

Glucovate Blood Sugar Support Review (2024-2025): Pros, Cons, and Potential Side Effects

F5 Hotfix

Bypass "Bad unescape" in Body POST (ASM, POST, JSON)

URL redirect

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Automate Let's Encrypt Certificates on BIG-IP

Encrypting Cookies

F5 Fast L4 Acceleration and the F5 Smart Coprocessor (prioritized Fast L4 Acceleration)