Forum Discussion
Kai_Wilke
Jan 26, 2016MVP
Hi Piotr,
although LTM Policies do have a support for enable/disable Server SSL Profiles, I do strongly believe that LTM Policies can't be used for this specific scenario. In addition to that, do I believe that LTM Policies in its current implementation are performance wise rather suboptimal to control Server SSL Profiles. The reasons for that are...
-
LTM Policies are proccessed before the actual LB selection is completed. So you wont get the chance to grap the port number of the selected pool to selectivly disable/enable the Server SSL Profile.
-
LTM Policies would reenable/redisable the SSL Profile on each single request, where iRule can be adjusted to use ideally the
event, to perform the required action only once during server side connection establishment (aka. OneConnect anyone?)SERVER_CONNECTED
Cheers, Kai