Forum Discussion
shaggy
Nimbostratus
are you looking to offload SSL on the F5 using the web-server's certificate, or are you looking to terminate SSL at the web-server instead of the F5?
shaggy
Jan 21, 2015Nimbostratus
in the virtual server configuration of the application's virtual server configured for HTTPS, remove the clientSSL profile and serverSSL profile.
When you remove a client SSL profile from a virtual server, the F5 loses the ability to examine HTTP-level data as F5 is now passing encrypted data through the F5 rather than terminating SSL and re-encrypting to pool members. Therefore, if you use any of the following features/profiles, they will also need to be removed - HTTP, oneconnect, cookie-based persistence, http-compression, stream profile, analytics profile, HTML profile, web acceleration profiles, iRules that use HTTP events/functions, LTM policy profiles that have HTTP-related statements, etc.