SSL Passthrough on port

Question

I want to configure SSL passsthrouHow to configure SSL passthrough on port 449. so client need to initiate https to VIP on port 449. and F5 will then talk back to server on 443. Is it possible without having any profile ?

daniel_varela · Answer

The way to do that is by not using any profile, just the TCP one. Configure your VS to listen on port 449 and attach a pool to it. You may need SNAT the traffic. It may be a good idea to set the virtual server type as fastL4.&nbsp;
By not selecting any L7 profile the BIGIP will send the traffic right to the pool members without interacting with any L7 protocol&nbsp;

pcham_217512 · Answer

To do SSL pass through you have to configure the VIP as Performance(Layer 4), it will not offload the certificate on LTM rather offloading will be done on the real servers behind LB.&nbsp;
-- Pawan Chamoli&nbsp;

Forum Discussion

SSL Passthrough on port

Recent Discussions

Flip-flop load balancing

ASM Export JSON - size Limit ?

Can i apply ddos profile on virtual server using port range

I used the wrong email account when take Application Delivery Exam (101)

F5 iControl REST API - viewBy Parameter Issue in Analytics Report

Related Content

Passthrough IPSec with AFM

Announcing F5 NGINX Gateway Fabric 1.4.0 with IPv6 and TLS Passthrough

HTTPS passthrough fallback URL

SSL passthrough VIP - mitigating birthday attack

Updating SSL Certificates on BIG-IP using REST API

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS