Forum Discussion

Nimbostratus

Nov 21, 2012

Triggering SSL encrypted pages via LTM

So we have a public web site, which needs to have some certain pages sent/received encrypted via SSL. At the moment all requests are unencrypted and go directly to port 80. We decided to install...

app sec

BIG-IP Access Policy Manager (APM)

security

What_Lies_Bene1

Cirrostratus

Nov 22, 2012

You've a few options here;

1) My preferred option if 2) below isn't possible as it's real simple and puts the control and responsibility in the hands of the people who've made the request - have the developers simply add https:// links where required, configure a new port 443 SSL Virtual Server with the relevant private key and cert installed, pointing to the same servers

2) Make it all SSL, why not? There should be real performance impact if you use the F5 to terminate and it's really, really simple!

3) Yes, an iRule could be use to redirect to HTTPS but it's going to get complicated real fast and every time something changes with the server code you'll never be sure it's doing what it should without full testing

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)