SSL packet and the effects of using SSL Bridging

The TCP packet itself should have no bearing on the UAG server, however the SSL may, depending on what you need the SSL for. The big question, IMO, is what are you doing with UAG that requires re-encrypting the traffic? Is it for client certificate authentication?

 

 

There are a few options:

 

1. SSL pass through - it gets the job done, but as you point out, limits your visibility and also limits your ability to persist on the connections.

 

 

2. ProxySSL - this would allow you to do an SSL man-in-the-middle - SSL negotiation between the client and server with visibility inside the payload.

 

 

3. Question the reason for UAG in the first place. Assuming you're using it for authentication, consider what APM can provide (as in nearly identical functionality, but faster).