dabance
Mar 08, 2018Altocumulus
ssl termination on F5
**client** <---> F5 <---> **Server** (SSL cerfificate available)
(client supports only TLS 1.1 and above) (Server Supports only TLS 1.0)
In the above scenario, we got problem due to an old server (only supports TLS 1.0) As a workaround, i am planning to offload SSL to F5 and let F5 function as a proxy.
I can export SSL cert from web server and apply on F5 client side profile on F5(no Server ssl profile configured as of now)
Also there is a requirement that the server initiates some connection to client.
Q1. Is client SSL profile (on F5) is enough to achieve above requirement Q2. Do i need any server SSL profile (on F5) ?