Forum Discussion
hooleylist
Sep 12, 2011Cirrostratus
It's possible there is a serverside plugin you could use for this. But I'm not aware of one.
In v11, there is a new feature called Proxy SSL which you can use for this type of scenario where you need to pass the original client cert onto the pool. Basically, you import the server cert/key(s) to LTM. LTM will allow the client and selected pool member to negotiate an SSL handshake directly. LTM watches to see what server cert the pool member uses. It then intercepts subsequent communication and decrypts the SSL allowing you to inspect/modify with the unencrypted content. This includes adding an HTTP profile to the virtual server. I couldn't find much public documentation on this, but you could open a case with F5 Support to request more details and a documentation update.
Aaron