I have set up the VM exactly like you suggest. The issue has to do with how to deal with the fact that the webservices think they're running unsecured, but the clients think they're secured. SOAP based webservices are apparently aware of their security environment.
Unfortunately, it's more than just rewriting the links, as well (tried an i-rule to do that -- response came back looking good, but still didn't work properly).
We ended up re-encrypting which defeats some of the purpose.
I was hoping that someone had tried this before and got it working.
Thanks for responding.
Jason
Nimbostratus