Forum Discussion

Nimbostratus

Feb 15, 2013

SSL all the way thru webserver and websphere

Hello All, I have been recently researching about security and how to implement it correctly in our environmnent. Here is the scenario, browser connect thru https -----> ...

Cirrostratus

Feb 18, 2013

Dee,

1) Probably, that depends on your security policy and the data of course. Yes, anyone can sniff/packet capture the data. Yes, same for Apache to Websphere.

2) There may be a performance hit on the servers (the F5 won't break a sweat) but you'll only be able to judge this by testing I would have thought.

3) LiveHTTPHeaders is displaying the data once the browser has unencrypted it (as with all the relevant HTTP content). To confirm it is encrypted (which I'm sure it is) run Wireshark on the PC and capture traffic to the F5; it'll be clear it's encrypted.

Forum Discussion

SSL all the way thru webserver and websphere

Recent Discussions

Content type hearder charset=UTF-8

Web acceleration

Create a CSR and Key using the BigIP LTM GUI when renewing a certificate

Enterprise Security best practices with F5 WAF

Disk space full - what files, folders are safe to delete?

Related Content

LTM Monitoring IIS and Webserver Binding

Go in Plain English: Creating your First WebServer

WebSphere MQ and BIG-IP

Proxy pacfile hosting without need for Webservers using iFiles on v11

IBM WebSphere and BIG IP F5 LTM iApp