SSL Passthrough on port

Question

I want to configure SSL passsthrouHow to configure SSL passthrough on port 449. so client need to initiate https to VIP on port 449. and F5 will then talk back to server on 443. Is it possible without having any profile ?

daniel_varela · Answer

The way to do that is by not using any profile, just the TCP one. Configure your VS to listen on port 449 and attach a pool to it. You may need SNAT the traffic. It may be a good idea to set the virtual server type as fastL4.&nbsp;
By not selecting any L7 profile the BIGIP will send the traffic right to the pool members without interacting with any L7 protocol&nbsp;

pcham_217512 · Answer

To do SSL pass through you have to configure the VIP as Performance(Layer 4), it will not offload the certificate on LTM rather offloading will be done on the real servers behind LB.&nbsp;
-- Pawan Chamoli&nbsp;

Forum Discussion

SSL Passthrough on port

2 Replies

Recent Discussions

Need advise to setup a policy on F5

Web acceleration

What are the different phases in DevOps?

Create a CSR and Key using the BigIP LTM GUI when renewing a certificate

F5 Rseries HA

Related Content

Passthrough IPSec with AFM

HTTPS passthrough fallback URL

SSL protocol mismatch

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

F5 self IP TLS/SSL hand shake fail with tcp port node member