SSL Acceleration - Can I encrypt outbound traffic

Question

I know that BIG-IP can do SSL termination and optionally re-encrypt traffic, but I'm not clear from reading the documentation whether it is possible to encrypt a non-encrypted traffic stream. We have an application using SOAP and because the traffic is high volume, we'd like to use SOAP over plain http internally, and use the F5 to translate/terminate the connection, and establish an SSL connection with an external server hosted in another organisation. Is this possible?

Thanks,

Iain

hoolio · Answer

Hi Iain, &nbsp;
&nbsp; Yes, LTM can encrypt the serverside connection regardless of whether the clientside connection is encrypted.  You can configure this with a server SSL profile on the virtual server.  You'd probably need to enable SNAT on the virtual server to ensure the external host responds back to the client via LTM.  You'll also need a route from LTM to the external host.&nbsp;
&nbsp; Aaron

iain_fyfe_38111 · Answer

Thanks Aaron - that all makes sense.&nbsp;&nbsp;Cheers,&nbsp;&nbsp;&nbsp;Iain&nbsp;

Forum Discussion

SSL Acceleration - Can I encrypt outbound traffic

2 Replies

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Long URL Redirecting

APM Access Policy|SSLVPN | SAML auth questionnaires

Azure Virtual Machine Scale Set (VMSS) with F5 LTM

F5 DNS Generic Host

Which encyrtion algorithm is used when making Kerberos ticket encyrtion.

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Let's Encrypt

Automate Let's Encrypt Certificates on BIG-IP

Load Balancing TCP TLS Encrypted Syslog Messages

Encrypting Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS