Forum Discussion
Hannes_Rapp
Mar 19, 2015Nimbostratus
For the use of iRules which are referencing to
SSL::enable serverside
or SSL::disable serverside
functions, the prerequisite is having a SSL serverside profile assigned to a virtual server.
1) Having a SSL serverside profile assigned to a virtual server (and using
SSL::disable serverside
function in an iRule):
- You are instructing F5 to exceptionally avoid negotiating a SSL session with the backend server. Useful if you want most of your f5-to-backend-server communication to be SSL, but create a few non-SSL exceptions.
2) Not having a SSL serverside profile assigned to a virtual server:
- F5 never negotiates a SSL session with a backend-server. You are unable to reference to SSL::enable serverside
and SSL::disable serverside
functions in an iRule. Useful if you want all of your F5-to-backend-server communication to be non-SSL.