Forum Discussion

Nimbostratus

Jul 11, 2018

Two load balancers in a row. How to manage certs

I have a top level F5 receiving traffic and sending to pools with two nodes in each pool. One node is the VIP on a next level F5 (a side) and the other node is a VIP on a different F5 (b side). ...

BIG-IP

devops

youssef1

Cumulonimbus

Jul 11, 2018

Hi,

Depending what's you want to implement. If you don't use ASM or APM you can set up this configuration:

FRONT REVERSE PROXY: L4 with source address persistence

BACK Reverse proxy (Side A): ssl interception (cookie persistence if you have multiple node)

BACK Reverse proxy (Side B): ssl interception (cookie persistence if you have multiple node)

Important point: if you have Hardware device in FRONT REVERSE PROXY and VE in BACK REVERSE PROXY. It's better to set ssl interception in in hardware device for performance reason.

For information ssl interception means that you have to set client and server ssl profile.

Regards

Forum Discussion

Two load balancers in a row. How to manage certs

Recent Discussions

URL

service profile HTTP in LTM v16.1?

iRule resulting in too many redirects

Azure SAML - F5 APM

Converting config to DO

Related Content

Use Kubernetes Cert-Manager to Maintain Let's Encrypt Certificates

Kubernetes cert-manager + LetsEncrypt + F5

Minimizing Security Complexity: Managing Distributed WAF Policies

Active/Active load balancing examples with F5 BIG-IP and Azure load balancer

iControl REST Authentication Token Management