Forum Discussion
Altostratusssl pass though https VIP is not working
hi
I configured an https VIP on LTM ( performance L4 VIP ) ;it did not work then tried standard VIP with http profile as none ; still it did not work..
What is the correct way to setup ssl pass though URL https:/xyz.abc.com as VIP on LTM.SSL certs are there on server only; we do not want them on LTM.
THANKS MAYANK
12 Replies
- nitass
Employee
Please advise me the concept why it worked with automap and not with specific snat pool?
you may check if server (pool member) have configured route for snatpool ip to bigip correctly.
why we need performance(layer 4) type of VIP in this case ?
either standard (without http profile) or performance layer 4 virtual server type should work.
check sol8082 about the difference between standard and performance layer 4 virtual server types.
sol8082: Overview of TCP connection setup for BIG-IP LTM virtual server types
https://support.f5.com/kb/en-us/solutions/public/8000/000/sol8082.html
Mayank_Shuklaok so servers(pool members) must have layer3/4 connection to snat pool ips!!
I only asked firewall team to check open/verify connection from source ip( snat pool IPs) to server1:443,server2:443.. I think 2 more things were needed:- 1. firewall team need to open this connection in both directions on firewall.( from server:443 to snat ips as well) 2. need to ping snat pool ips from server to check layer 3 connection..
