Forum Discussion

Nimbostratus

Oct 18, 2010

Big-IP configuration with Intrusion Detection device for ssl traffic

Our currenct infrastructure we have load balancing based on IP. For https traffic the Virtual IP on Big-IP is load balancing based on IP. The individual members (servers) in the pool have se...

config

design

hooleylist

Cirrostratus

Oct 18, 2010

Hi Robert,

Decrypting the SSL on LTM is a very common practice. LTM is generally going to be more efficient than the servers at this. And it simplifies the cert administration. And it allows you to easily use an IPS to inspect the decrypted HTTP off a single port. So I'd say it's a good solution that you've arrived at.

Aaron

Recent Discussions

Portal Access to HTTPS resources slow
May 07, 2024 JoshBecigneul
HOW TO HIRE A HACKER TO RECOVER STOLEN BITCOIN. CONTACT FASTFUND RECOVERY
May 07, 2024 juliarobert
Big-IP Next 20.2.0-2.375.1+0.0.43 iRule count problem
May 07, 2024 gwieczorek
rewrite Azure AD response for portal access via web portal
May 07, 2024 eddyk99
Azure SAML - F5 APM
May 07, 2024 junior

Forum Discussion

Big-IP configuration with Intrusion Detection device for ssl traffic

Recent Discussions

Portal Access to HTTPS resources slow

HOW TO HIRE A HACKER TO RECOVER STOLEN BITCOIN. CONTACT FASTFUND RECOVERY

Big-IP Next 20.2.0-2.375.1+0.0.43 iRule count problem

rewrite Azure AD response for portal access via web portal

Azure SAML - F5 APM

Related Content

SSL Orchestrator Advanced Use Cases: Integrating F5 Intrusion Prevention System (IPS)

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

High Performance Intrusion Prevention

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

Detect and stop exfiltration attempts with F5 Distributed Cloud App Infrastructure Protection