SSL offloading in F5 with 2 wild card certificate on same VS

You need a serverssl profile only when you encrypt traffic to your backend server, if you want plain text traffic to your servers then don’t add it. Your configuration needs to be coherent hence your pool member configuration need to point to the http port in your servers.

The rewrite redirect setting of the http profile helps in ssl offload scenarios where the server sends back redirects but pointing to http. You server doesn’t know about ssl offload, it still thinks the traffic is http and so if a redirect happens it will be http. The option in the http profile fix that by rewriting it to https so the client is redirected to https and not http which may break the flow.