on 28-Nov-2018 08:22
Internet traffic today is encrypted at a rate of almost 90%. Our F5 Labs team wrote a TLS Telemetry Report last year that outlines several Internet-related encryption statistics. Also, Google serves up a page with near-real-time statistics related to Internet encrypted traffic. These reports show a staggering amount of encryption used across the Internet today.
While encryption is a great benefit to securing web traffic, it also presents a problem for inspecting that traffic. Many organizations need to send traffic through security devices/services to ensure they are not allowing malicious traffic into their network. But this presents a problem of organizing and managing encryption keys in addition to slowing down the user experience. In this video, John outlines these issues and explains why they are a problem. Stay tuned for more follow-up content showing how F5 can help solve this problem. Enjoy!
Nice introduction! You mentioned that another Lightboard Lesson is on the way. No to hard to figure out it will be about SSLO 🙂
If I may ask to include some info about this topics:
@Piotr...great questions! I'll be sure to address them. By the way, what version of SSLO are you running? I can talk through these with recent versions, but if you have an older version, maybe I can take that into account as well. Thanks!
Just played around with v4. I think v5 is not out yet? Heard that there is plenty of changes how v5 is configured (more wizards).
@Piotr, I recorded the SSLO video, but time constraints didn't allow me to dig into all the details you asked about. That said, I wanted to post answers here so you would have them (and others could see as well).
Thanks a lot for answers. Will check as well SSLO video. Just one question, what do you mean by that:
Is it mandatory to use two separate physical interfaces for each L2 service? No, it's not necessary. It needs to be different L2 network, though.
How I can have different L2 using same physical interfaces on BIG-IP?