For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

mike_gatti_6169's avatar
mike_gatti_6169
Icon for Nimbostratus rankNimbostratus
Apr 17, 2008

SSL Pass Through

I have a pool of appliances that are running on port 443 with a self signed certificate that can not be changed (the vendor does not have an option to disable SSL and run the web interface on port 80)...
config
design
mike_gatti_6169's avatar
mike_gatti_6169
Icon for Nimbostratus rankNimbostratus
Apr 17, 2008
Aaron, thanks for the reply

 

We don't use the LTM in band with the servers. The servers that are in the pool are on a different subnet. The VIP is configured with IP Translation = Enabled / SNAT = AUTONAT / Port Translation = Disabled. I can successfully telnet to the server in the pool on port 443 from the LTM to test connectivity.

 

When I try to connect to the vip:443 from my browser it stays in a connecting state and does not show the Web UI from the server in the pool. If I go straight to the server i get a error message "Can't verify the identity of the website", which is caused by the self signed cert that the server uses. I have to click ok to pass this error. Could LTM be hanging up on this error?