Hi Team, I go the requirement from application team that for one of the VIP SSL Termination & traffic processing should happen at backend server instead of LTM Box. Kindly suggest the way to move forward.

Hi, You export the private key&certificate used in the clientssl profile and import it in the backend server configuration. Then, you remove your clientssl et serverssl profile. Depending on the Virtual Server type, you may need to remove application profiles like http profiles, cookie persistence, etc. At the end, you need to have move your VS into a Performance L4 VS with a pool assigned. The persistence will probably need to be switched to source_addr or ssl.

Forum Discussion

MOHIT_125417

Altostratus

Jun 24, 2016

SSL Termination at Server end

Hi Team,

I go the requirement from application team that for one of the VIP SSL Termination & traffic processing should happen at backend server instead of LTM Box.

Kindly suggest the way to move forward.

application delivery

LTM

1 Reply

Yann_Desmarest
Cirrus
Jun 24, 2016
Hi,

You export the private key&certificate used in the clientssl profile and import it in the backend server configuration. Then, you remove your clientssl et serverssl profile.

Depending on the Virtual Server type, you may need to remove application profiles like http profiles, cookie persistence, etc.

At the end, you need to have move your VS into a Performance L4 VS with a pool assigned. The persistence will probably need to be switched to source_addr or ssl.