Customised https port with ssl pass through

Dran · ‎02-Mar-2021

Hello

can I know if the ssl port for application is customised such as 9090 , on virtual server can I configure ssl pass through or I should still add client and ssl for f5 to understand it is a https traffic ??

boneyard · ‎02-Mar-2021

i believe you are turned around the question 🙂

if you want to do pass through (so no SSL decrypt / possibly encrypt again) you can do that on every port.

if you need to do SSL decrypt (possibly encrypt again) then you need client SSL and possibly server SSL, but also on every port you want.

Dran · ‎02-Mar-2021

Hi

Thank you for responding.

wanted to understand how f5 will understand it is an https traffic, when it is customized https port and we are not applying ssl profiles and doing a ssl pass through...We wouldnt be applying http profile as well right ? and the virtual server is a standard server with port set to 9090 and it would in "other" port category .

boneyard · ‎02-Mar-2021

why does the f5 have to understand it is HTTPS? if it has to do something with it then it might have to, but then you dont do pass through.

from you say, yes, standard virtual server on other port, no http profile either.

Dran · ‎02-Mar-2021

oh ya true, but then when the request comes for https://vip:9090 , since its tcp profile linked, it ll accept the traffic?

boneyard · ‎02-Mar-2021

yes, it will accept the traffic and forward it to the poolmember.

Dran · ‎02-Mar-2021

understood...thank you..much appreciated for your response

DevCentral

Customised https port with ssl pass through