Forum Discussion

Altostratus

Jun 24, 2016

SSL Termination at Server end

Hi Team, I go the requirement from application team that for one of the VIP SSL Termination & traffic processing should happen at backend server instead of LTM Box. Kindly suggest the way t...

application delivery

LTM

Yann_Desmarest

Cirrus

Jun 24, 2016

Hi,

You export the private key&certificate used in the clientssl profile and import it in the backend server configuration. Then, you remove your clientssl et serverssl profile.

Depending on the Virtual Server type, you may need to remove application profiles like http profiles, cookie persistence, etc.

At the end, you need to have move your VS into a Performance L4 VS with a pool assigned. The persistence will probably need to be switched to source_addr or ssl.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL Termination at Server end

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

Big IP licensed with wrong Base Registration Key

FQDN Node Configuration

SSL Forward Proxy, iRules and Client Hello

Problem with connecting using f5 vpn on Ubuntu/Linux; stuck on "Connecting..."

Related Content

Check a Virtual Server's SSL Status

SSL Termination

SSL Profiles Part 7: Server Name Indication

FTPS_SSL_ Termination

Understanding Server SSL Trusted Certificate Authorities on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS