Forum Discussion
shopkeeper56_23
Cirrostratus
CirrostratusSSL Inspection Bypass
Hi,
Im in the process of setting up SSL inspection on browsing traffic for a client. I have been using F5's deployment guide (https://www.f5.com/pdf/deployment-guides/ssl-intercept-dg.pdf) to set t...
Yann_Desmarest
Cirrus
CirrusHello,
Why not just set up an SSL forward proxy configuration and apply a specific SSL profile for that :
You can also define a bypass list within the SSL profile directly
shopkeeper56_23Cirrostratus
CirrostratusThat method would require that I manually input every site/hostname that I would like to bypass. The intention here is to use URL DB Categories from the SWG to determine which sites should be bypassed (see the F5 documentation I linked).
And as mentioned in my post, the bypassing isnt the issue here. The fact is that the above iRule which is supplied by F5 verbatim as part of their deployment guide is for some reason bombing out non-bypassed HTTPS connections.
