Forum Discussion

Nimbostratus

Feb 09, 2018

SSL interception on F5

Hello, I am planning to intercept SSL on F5 to certain web servers to apply some iRules based on HTTP Headers. Currently I have Virtual server for HTTPS for those web servers. If I understand t...

application delivery

LTM

MvdG

Cirrus

Feb 09, 2018

xMadi,

You are correct. You need to upload a valid certificate and use it in the client-ssl profile. If you do not care about the internal certificate, you can use the serverssl-insecure-compatible profile.

Instead of an iRule, maybe you can you a policy for the HTTP header based operations.

Regards, Martijn.

MvdG

Cirrus

Feb 09, 2018

Marek,

You should take a look at a LTM policy (Local Traffic -> Policies).

You can create rule within a LTM policy that forwards traffic to a pool based on HTTP header. Off course you can do the same with an iRule, but if you can do it in the GUI, you should do it there.

Good luck.

Martijn.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL interception on F5

F5 Academies Are Back – And We’re Coming to a City Near You

Introducing the F5 Application Study Tool (AST)

Recent Discussions

Rewrite content in XML schema file.

DNS Request to VS?

Guide for exam 402 F5 Certified Solution Expert

HA pair when both Tenants reside on the same Velos chassis

SMTP SNAT vs iRule header

Related Content

Advanced Threat Mitigations via SSL Intercept

SSL Intercept SHA1 Certificate

DNS Interception: Protecting the Client

SSL Orchestrator Service Extensions: User Coaching

Air Gap Egress Inspection with SSL Intercept iApp Template

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS