Forum Discussion

Nimbostratus

Feb 09, 2018

SSL interception on F5

Hello, I am planning to intercept SSL on F5 to certain web servers to apply some iRules based on HTTP Headers. Currently I have Virtual server for HTTPS for those web servers. If I understand t...

application delivery

LTM

MvdG

Cirrus

Feb 09, 2018

xMadi,

You are correct. You need to upload a valid certificate and use it in the client-ssl profile. If you do not care about the internal certificate, you can use the serverssl-insecure-compatible profile.

Instead of an iRule, maybe you can you a policy for the HTTP header based operations.

Regards, Martijn.

MvdG

Cirrus

Feb 09, 2018

Marek,

You should take a look at a LTM policy (Local Traffic -> Policies).

You can create rule within a LTM policy that forwards traffic to a pool based on HTTP header. Off course you can do the same with an iRule, but if you can do it in the GUI, you should do it there.

Good luck.

Martijn.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL interception on F5

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

Advanced Threat Mitigations via SSL Intercept

SSL Intercept SHA1 Certificate

DNS Interception: Protecting the Client

SSL Orchestrator Service Extensions: DoH Guardian

Air Gap Egress Inspection with SSL Intercept iApp Template

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS