UAG and F5 SSL communication

Question

Current designing and wondering if there is anything we may need to consider regarding passing SSL traffic to Microsoft's UAG.&nbsp;
 &nbsp;
If we use the F5 to do unencrypting and re-encrytping of the packet, will UAG react different to that packet?&nbsp;
I'm investigating doing a SSL re-encryption, which is contrary to the design that is currently being looked at. Right now, the design consideration is to do SSL passthrough all the way to UAG, and that would limit our ability to inspect and know what is going on from a security packet inspection.&nbsp;
 &nbsp;
Looking for guidance&nbsp;

ryan_korock_46 · Answer

Not sure what you visibility decrypting/re-encrypting would get you. I believe it's IPSEC traffic that then gets encrypted (again) via SSL.

joethefifth · Answer

If this might help, we have been doing tests lately using decryption/encryption all the way  without issues.  
&nbsp; setup is client =&gt; ssl =&gt;uag vip =&gt; ssl  =&gt; uag servers =&gt;ssl=&gt; sharepoint vip =&gt;ssl =&gt; sharepoint servers

Forum Discussion

UAG and F5 SSL communication

Recent Discussions

F5 - AS3 - BIGIQ / BIGIP SchemaVersion Missunderstanding

F5OS API - not able to create vlan

F5 APM - limiting access to the bandwidth for network Access

Change LB priority based on status

High CPU utilization (100%).

Related Content

DevCentral Community Guidelines

Installing BIG-IP Next on Nutanix Community Edition

DevCentral Community Ranking Explained

Community Highlights, Week 15 '23

Community Learning Path: Multi-Cloud Networking

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS