Forum Discussion

Nimbostratus

Sep 28, 2011

what is appropriate way to use SSL::disable serverside/ SSL::enable serverside

We have a requirement to encrypt server-side traffic between the F5 and our SSO web application (CAS) because passwords are transmitted. Our F5 VIP has several different applications behind it on seve...

Nimbostratus

Sep 28, 2011

Hi Harold,

I had a similar situation where we wanted traffic to be Secure depending on the area that the client was going to. Our configuration sounds pretty close to what yours is (URI's destinations are hosted on different servers and have different Pools, so we used the Pool as the trigger).

See if this methodology works for you.

 
when CLIENT_ACCEPTED {
SSL::disable serverside
}
when HTTP_REQUEST {
}
when SERVER_CONNECTED {
if { ([string tolower [LB::server pool]] eq Target.Pool.Name.For.SSL.Enable) } {
SSL::enable serverside
}
else {
SSL::disable serverside
}
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

what is appropriate way to use SSL::disable serverside/ SSL::enable serverside

Recent Discussions

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

AS3 Limitations

Unable to install firmware OS and drop at 10%

Statistics ›› Analytics : HTTP : Overview

Related Content

behavior of SSL::disable serverside

Serverside SNI injection iRule

SSL 3.0.7 - Unsafe legacy renegotiation disabled on client side

Doesn't serverside ssl disable iRule work in SSLO?

Insert Client Certificate In Serverside HTTP Headers

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS