Forum Discussion
Chris_Phillips
Aug 14, 2012Nimbostratus
SSL offload headers for ASM
Hi, Is there a way for an ASM box sitting behind an LTM box to know that SSL has been terminated on LTM? We add in similar headers for Weblogic which is behind ASM, but found that the allowe...
hooleylist
Aug 14, 2012Cirrostratus
I assume they're not using HTTPS between the LTM and ASM. If that's true, you can force ASM to globally interpret all requests as HTTP using an internal parameter:
10.2.x - Manual Chapter: Internal Parameters for Advanced Configuration
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/config_guide_asm_10_2_0/asm_apx_internal_params.html
ProtocolIndication - Specifies how the system distinguishes between HTTP and HTTPS URLs. If the value is -1, the system decides whether the object requested is an HTTP request or an HTTPS request based on the incoming traffic. If the value is 0, the system treats all incoming URL requests as HTTP requests. If the value is 1, the system treats all incoming URL requests as HTTPS requests.
Aaron
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects