Forum Discussion

Nimbostratus

Dec 13, 2006

SSL Certificates

I have few vritual servers www.virtual1.com IP1 www.virtual2.com IP2 www.virtual3.com IP3 All of them are connected to the same pool of servers pool with member1 and memb...

Cirrostratus

Dec 14, 2006

Okay... so you don't need an iRule for this. You can configure a client SSL profile using each of the SSL certifiates/keys, for each virtual server. This will allow you to decrypt the client to virtual server SSL.

You can then configure a single server SSL profile and associated that profile with each of the virtual servers. This will allow BIG-IP to re-encrypt traffic from itself as the client to the servers in the pool.

To insert the X-Forwarded-For header, just enable the option on a new HTTP profile and associate that with the virtual server.

As this doesn't pertain to rules, please read up on these configuration steps in the 9.x Configuration Guide for your version on AskF5.com. If you have any questions, you can contact F5 support.

Thanks,

Aaron

Forum Discussion

SSL Certificates

Recent Discussions

F5 ASM logging profile to specify source IP

Portal Access to HTTPS resources slow

Cannot login to Avaya wanx using f5 apm network access

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Thumbprint of the client ssl certificate

Implementing SSL Orchestrator - Certificate Considerations

SSL Certificate Report

Re: Management Certificate

SSL Certificate Alerts via Email