Forum Discussion

Altocumulus

Jul 24, 2017

ssl pools

Hi, i dont even know if this is a supported config. We have a VIP listening on TCP443 thats doing ssl offload (certificate on LTM too) and we want the traffic sent to a pool with its members listeni...

LTM

security

Jad_Tabbara__J1

Cirrostratus

Jul 24, 2017

Hello Cymru,

Please verify that you have applied a client SSL profile and a server SSL profile on the VS.

Just to clarify, when you say "SSL Offloading" this means that you only encrypt trafic between the "client and the VIP". In this case you will only put an "client SSL profile" on your VS

But if your backends/servers listen on 443 I think that they probably wait for an SSL handshake from the F5. So you will need to add also "server SSL profile" on your VS.¨

Regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

ssl pools

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

certitcate error

Layered ASM for APM login page protection

migrate from serie I to R. Cluster LTM-GTM

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

Related Content

SSL Offloading and Backend pool https

SSL Profiles Part 6: SSL Renegotiation

Introduction to BIG-IP SSL Orchestrator

SSL Orchestrator Service Extensions: DoH Guardian

SSL Profiles Part 5: SSL Options

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS