Learn F5 Technologies, Get Answers & Share Community Solutions Join DevCentral

Filter by:
  • Solution
  • Technology
Answers

secure traffic between webservers and f5

I am looking into what options we have in securing the traffic between the f5 ltm and webservers? Currently we have encrypted traffic between client and and ltm (client side ssl). I know server side ssl is one way to do this.

0
Rate this Question

Answers to this Question

placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

Serverside SSL is the best possible option. You can also explore VPN of some kind but it will get too complicated and consume too much resources on the F5 and on the servers.

Normally an F5 device is close to the servers and are passing traffic to the servers within a hop or on L2 over dedicated switch/router and hence, VPN is an overkill, in my opinion.

1
Comments on this Answer
Comment made 27-Jun-2016 by Arie 2069
+1 for using server-side SSL.
0
Comment made 29-Jun-2016 by newbief5 196
Thanks
0
placeholder+image
USER ACCEPTED ANSWER & F5 ACCEPTED ANSWER

As others have said, and you've suggested - Serverside SSL - Of course depending on your environment/requirements this could be as simple as a Self Signed certificate or having a full blown CA chain.

Also might be worth fiddling around with Negotiation options, ciphers etc. Depending how in depth you need/want to go.

Regards,

1