UAG and F5 SSL communication

Question

Current designing and wondering if there is anything we may need to consider regarding passing SSL traffic to Microsoft's UAG.&nbsp;
 &nbsp;
If we use the F5 to do unencrypting and re-encrytping of the packet, will UAG react different to that packet?&nbsp;
I'm investigating doing a SSL re-encryption, which is contrary to the design that is currently being looked at. Right now, the design consideration is to do SSL passthrough all the way to UAG, and that would limit our ability to inspect and know what is going on from a security packet inspection.&nbsp;
 &nbsp;
Looking for guidance&nbsp;

ryan_korock_46 · Answer

Not sure what you visibility decrypting/re-encrypting would get you. I believe it's IPSEC traffic that then gets encrypted (again) via SSL.

joethefifth · Answer

If this might help, we have been doing tests lately using decryption/encryption all the way  without issues.  
&nbsp; setup is client =&gt; ssl =&gt;uag vip =&gt; ssl  =&gt; uag servers =&gt;ssl=&gt; sharepoint vip =&gt;ssl =&gt; sharepoint servers

Forum Discussion

UAG and F5 SSL communication

2 Replies

Recent Discussions

F5 iRule to replace host to path

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries R2600 Tenant sizing

About AWAF "Redirect URLs" in "Responses and Blocks"

ISP Bandwidth Utilization

Related Content

DevCentral Community Guidelines

DevCentral Community Ranking Explained

Community Learning Path: Multi-Cloud Networking

Community Highlights, Week 15 '23

Community Highlights, Week 48 '23