Forum Discussion

Nimbostratus

Apr 12, 2010

Expose pool member in response

I would like to expose which pool member responded to the request for tracking within TrueSight in front of the VIP. This is what I feel will work, but I'd like some feedback whether this is...

Altostratus

Jan 12, 2011

Posted By fujisen on 01/12/2011 07:57 AM

thanks,

I understand SSL client Cert is required on https VIP, to use same irule but can the pool memebers listen on port 443? or it should be on 80

If you want encryption between the LTM and Pool Member (over 443,) then you'll need a serverSSL profile in addition to the clientSSL profile.

Think of it like this:

1. Client Request hits LTM over HTTPS.

2. LTM uses the ClientSSL profile to decrypt the traffic so it can view the request.

3. If sending to the pool member over HTTPS, LTM uses the ServerSSL profile to re-encrypt the traffic (and decrypt it on the way back)

Forum Discussion

Expose pool member in response

Recent Discussions

What happens if I only enable ASM in BIG-IP Under System > Resource Provisioning

URL

Migration from i series 10200 with 1 child VCMP to r series 10900 series

Azure DP-100 Exam Questions

Deploying F5 WAF in front of Azure Web App Services

Related Content

Protect an application exposed on Internet with F5 XC WAAP

Introduction of Incident Response

Exposed HF API tokens, Hacks, MS news-Dec 3-10 2023-F5 SIRT-This Week in Security

custom response page for api

DevCentral's Featured Member for February - Edouard Zorrilla