Forum Discussion

Nimbostratus

7 years ago

SSL offload question regarding licence

We have a cluster of BIG-IP 1600 with 2 tmms and licence for 500 ssl tps. According to the kb below, we should be able to manage up to 1000 ssl tps. Is that correct? Am I missing anything? http...

Employee

7 years ago

Sort of. The problem is that the 1600 is a pretty old platform, and the TLS hardware only natively supports 1k asymmetric keys. In general, for 2k keys (which is standard today), performance is reduced by about 75%. Having said that, if you license the system for maximum TLS support, it should be able to achieve ~1000 TPS for 2k keys.

Assuming your certificates use 2k keys, you might want to consider a hardware refresh (particularly since the 1600 is now past End of Software Development.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL offload question regarding licence

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

VIP control across data centers - how to ensure only 1 VIP is up at a time?

FQDN Node Configuration

Logical Disk Full to Migrate rSeries

Priority Group Activation is not working

Changes to DO and AS3 GitHub - no longer monitored

Related Content

Question & Answer: Regarding CVE-2020-5902

Question about healthchecks

Question regarding the F5 vulnerabilities page API

Renewing SSL certificate for SSL offload - question regarding CSR creation

SSL Offloading and Backend pool https

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS