F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

sadikhov_80750's avatar
sadikhov_80750
Icon for Nimbostratus rankNimbostratus
Nov 21, 2012

Triggering SSL encrypted pages via LTM

So we have a public web site, which needs to have some certain pages sent/received encrypted via SSL. At the moment all requests are unencrypted and go directly to port 80.   We decided to install...
app sec
BIG-IP Access Policy Manager (APM)
security
What_Lies_Bene1's avatar
What_Lies_Bene1
Icon for Cirrostratus rankCirrostratus
Nov 22, 2012
You've a few options here;

 

 

1) My preferred option if 2) below isn't possible as it's real simple and puts the control and responsibility in the hands of the people who've made the request - have the developers simply add https:// links where required, configure a new port 443 SSL Virtual Server with the relevant private key and cert installed, pointing to the same servers

 

2) Make it all SSL, why not? There should be real performance impact if you use the F5 to terminate and it's really, really simple!

 

3) Yes, an iRule could be use to redirect to HTTPS but it's going to get complicated real fast and every time something changes with the server code you'll never be sure it's doing what it should without full testing