Forum Discussion

Marcus_Wilhelms's avatar
Marcus_Wilhelms
Icon for Nimbostratus rankNimbostratus
Aug 18, 2014

Terminate a stunnel VPN on a f5

I'm trying to figure out if it's possible to terminate a SSL VPN (the other side uses stunnel) on a f5. I'd like all traffic that goes to a certain IP (the other end of the VPN) to be encrypted, regardless of port. Anyone with experience with this?

 

3 Replies

  • I'm not 100% sure - the AAM module does do tunnelling, but only (according to doco) with another AAM peer. It's quite likely you could get it to work with an stunnel peer but you'd have to play with it to see. Get yourself an eval license and check it out.

     

    • Marcus_Wilhelms's avatar
      Marcus_Wilhelms
      Icon for Nimbostratus rankNimbostratus
      Maybe I was a bit unclear. I have four nodes behind the F5, I want them to connect to the F5 on port X and all that traffic should be encrypted and forwarded to an external IP, just like an stunnel. Having a hard time figuring this one out.
  • i'm looking to do something similar - right now i have clients going through a layer4 vip using stunnel with backend stunnel servers - i'd like to get rid of those backend stunnel servers and do the ssl termination on the load balancer.