Forum Discussion
NimbostratusSSL Offload, terminate Client SSL and decrypt to servers
Hi Expert,
I have a pool of servers running on http port 6661, and i want to configure SSL offloading on port 8443 so client has SSL enabled but F5 should decrypt the traffic and balance it to the pools' member.
I have created iapp for this and the first web page is working fine for my application, but when i try to login to the next page, the client browser is switched to http instead of HTTPs and it is not secured anymore.
Could you please advise on how to configure this SSL-OFFLOADING on F5? any procedure or document please?
Thanks. Halim
6 Replies
dragonflymrCirrostratus
Hi,
I think you should start with setting Redirect Rewrite in HTTP profile (Local Traffic ›› Profiles : Services : HTTP). If this will not work probably some iRule with Stream profile would be necessary, here I am not expert but you should find relevant resources on support page.
Piotr
Halim_Gebrael_1i have created the STREAM rules and it is working fine. Many thanks for your great support. I still have some issues with the javascript/Ajax when i use my application to click on specific Menu, I'm getting error 404.. Any suggestions please?
- dragonflymrSorry, too advanced for me, real gurus are needed here.
- Halim_Gebrael_1
Thanks Piotr_L, actually the STREAM thing saved my time by at least 1 week. Let's see if we can get help for this issue.
- dragonflymrglad to help at least this far Piotr
- Halim_Gebrael_1
In internet explorer 10 it is working fine. on firefox and Internet exp 11 i'm facing this error, the following STREAM rule i created:
when HTTP_REQUEST { STREAM::disable HTTP::header remove "Accept-Encoding" } when HTTP_RESPONSE { if {[HTTP::header value Content-Type] contains "text"}{ STREAM::expression "@" STREAM::enable } }
