BIGIP as Reverse Proxy

Hi all

Im trying to configure a virtual server to act as a reverse proxy so I can replace a TMG. It would proxy for some internal sites.

The goal is the following:

External Name: publicdomain.net Internal Name internaldomain.lan

-- https://publicdomain.net --> BIGIP --> https_or_http://internaldomain.lan --> WEBSERVER

I have followed this article: https://support.f5.com/kb/en-us/products/big-ip_ltm/manuals/product/ltm-implementations-11-4-0/21.html

I have configured a virtual server: - listening port 443 - no default pool - SNAT with automap enabled (to act as proxy, logically) - a client SSL profile (to make the client connect to the proxy via HTTPS) - a server SSL profile (to allow the BIGIP connect to the internal server via HTTPS - is this correct??)

But i have the following doubts: - How can i make BIGIP connect via HTTP instead of HTTPS to the internal webserver? - Is it neccesary the server SSL profile to make BIGIP connect via HTTPS to the internal webserver? But each site of the internal webservers has a different internal certificate. Really i dont know how to get this work.

Hope i have explained my doubts correctly

Thanks!

application delivery

LTM

reverse proxy

Forum Discussion

BIGIP as Reverse Proxy

Recent Discussions

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Chrome V 124+ on MacOS - Virtual Server Access Issue

Related Content

F5 Reverse Proxy setup

Re: BigIP Report

Troubleshooting Lync/Skype for Business Reverse Proxy

Setup a Reverse Proxy that redirects to internal port

Reverse Proxy With Basic SSO