Forum Discussion

Cirrus

Aug 02, 2023

F5 redirect

Hi! I have 2 F5s active standby cluster BIG-IP 16.1.3 build 0.0.12 and I have a VServer called: xyz.acme.com:443. It's public internet facing, with public cert imported as a server profile - works ...

application delivery

redirect

mihaic

MVP

Aug 02, 2023

I don't think it will work ,as you said you have a cert only for the first domain.

You probably need a wildcard cert for *.acme.com

or a SAN certificate.

CA_Valli
MVP
Aug 03, 2023
I agree with other MVP's here, SSL will see SNI mismatch at handshake time and return a warning.
You need to import a wildcard certificate (which you might already have bought) , or to renew xyz.acme.com with z.acme.cm as the SAN, or to request z.acme.com cert (and in this case, you also need to configure two clientSSL profiles on the BIG-IP)

Forum Discussion

F5 redirect

Recent Discussions

BUG Query

Ansible modules for F5OS

Pool Members communication with B-party via F5 VIP

Find GSLB pool membership from vip IP

Server 2 causing application slowness

Related Content

Anchor Link Redirect

F5 ADC - url rewrite redirect with parsing

url redirect

F5 Python SDK Overview

F5 & Cisco ACI Essentials - Take advantage of Policy Based Redirect