Forum Discussion
CA_Valli
May 28, 2024MVP
Hi Ozzy, I'm sorry but I'm getting lost here, where is the traffic policy applied? Is there a total of 3 Virtual Server objects?
In a scenario like the one you described, where a single IP resolves multiple FQDNs, I'm used to just applying all client-ssl profiles to a single Virtual Server, paying attention to https://my.f5.com/manage/s/article/K13452 settings :
- specifying the SNI on all clientssl profiles,
- checking only one of them as "default SNI"
- matching cipher suites on all profiles.
Then, I'd usually use an iRule to perform pool selection, based on the HTTP::host information