Forum Discussion

Altocumulus

Jul 24, 2017

ssl pools

Hi, i dont even know if this is a supported config. We have a VIP listening on TCP443 thats doing ssl offload (certificate on LTM too) and we want the traffic sent to a pool with its members listeni...

LTM

security

Jad_Tabbara__J1

Cirrostratus

Jul 24, 2017

Hello Cymru,

Please verify that you have applied a client SSL profile and a server SSL profile on the VS.

Just to clarify, when you say "SSL Offloading" this means that you only encrypt trafic between the "client and the VIP". In this case you will only put an "client SSL profile" on your VS

But if your backends/servers listen on 443 I think that they probably wait for an SSL handshake from the F5. So you will need to add also "server SSL profile" on your VS.¨

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ssl pools

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

JSON Web Key Set Endpoint

Related Content

SSL Offloading and Backend pool https

SSL Orchestrator Service Extensions: DoH Guardian

wccp configuration for SSL Orchestrator

SSL Profiles Part 6: SSL Renegotiation

Introduction to BIG-IP SSL Orchestrator

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS