Client and server ssl cert location when redirecting to a second VIP (LTM)
Hi All,
I have a setup using a SAN cert which holds multiple URLs pointing to a single public IP address. I plan on having traffic hit a vip and then being filtered by url to a second tier of vips, one for each url. This is a requirement in the design. I've tested using the client and server Certs on the primary vip and this seems to work. I just want to be sure the client cert should sit on the primary vip and not the secondary vip as the snat address is allocated to secondary vip so I guess the connection to the server is from the secondary vip. Does the secondary vip inherit the SSL config from the primary vip? Is anything else like IRules inherited from the primary vip? The server ssl cert is the F5 default cert.
Thanks in advance