Forum Discussion

TMH's avatar
TMH
Icon for Nimbostratus rankNimbostratus
Mar 09, 2023

SSL offloading with port 8443

Hallo,  I need help to configure SSL offloading with port 8443 , i have configured a VS https with port 8443 and pool members that listen to port 8443 , i want to configure SSL certificate but no lu...
application delivery
security
Paulius's avatar
Paulius
Icon for MVP rankMVP
Mar 10, 2023

TMH In order to provide additional detail on why this isn't working it would be helpful to see the configuration of the virtual server and SSL client profile that is assigned to the virtual server. Purely based on the screenshot it seems like the SSL client profile being used doesn't have the trusted CA certificate in it.

TMH's avatar
TMH
Icon for Nimbostratus rankNimbostratus
Mar 10, 2023

Paulius 

What i had configured with virtual server :

Name:xxxx

Type:Standard

Source:0.0.0.0.

Destination:x.x.x.x

Port:Other 8443

Protocol:TCP

Protocol Profile(client):Tcp

Protocol Profile (Server):use client profile

SSL profile client: (name of profile ssl 8443)

SSL profile server:None

All the other options is none.

Default Persistence Profile:source_add

Fallback Persistence Profile:none

And for SSL client Profile:

Certificate key chain: i added the certificate and key and chain that I already imported in certificate list.

correct me if there's something wrong or missing .

  • Paulius's avatar
    Paulius
    Icon for MVP rankMVP
    Mar 10, 2023

    TMH Based on the description and without being able to see which cert and key pair are being used I would say this is configured correctly and should work. If you are still having issues you might take a QKVIEW and upload it to iHealth to see if anything pops up on that.