Forum Discussion

vvskaladhar_488's avatar
vvskaladhar_488
Icon for Nimbostratus rankNimbostratus
Feb 05, 2012

SSL offloading

How SSL works ? What is MAX SSL TPS ? Waht is 1 Key and 2 Key ? What is SSL bulk Crypto? What benefit Web Accelerator Module and Bundle will do? How many of SSL offloading supported in each instance if VIPrion 2400 virtualised to 1 GTM and 2 LTM instances ? What is SSL Acceleration?

4 Replies

  • i am able to answer only some.

     

     

    What is MAX SSL TPS ?sol6475: Overview of SSL TPS licensing limits

     

    http://support.f5.com/kb/en-us/solutions/public/6000/400/sol6475.html

     

     

    Waht is 1 Key and 2 Key ?i guess you mean 1024 bit key and 2048 bit key.

     

     

    What is SSL bulk Crypto?it is symmetric encryption after ssl handshake.

     

     

    hope this helps.
  • Hamish's avatar
    Hamish
    Icon for Cirrocumulus rankCirrocumulus
    What is SSL Acceleration

     

     

    On a BigIP SSL acceleration is where the SSL encryption is performed on the LTM rather than the backend servers. (Offloading). Usually this is performed via dedicated hardware in the BigIP unit, rather than in software. However some encryptions are still done in software (There's a command for listing which ones are accelerated or non-accelerated via hardware).

    Some older units only did SSL in hardware for the key exchange and did bulk (symmetric which is much faster to do) encryption in software. Newer units can do both in hardware.

     

     

    How many of SSL offloading supported in each instance if VIPrion 2400 virtualised to 1 GTM and 2 LTM instances ?

     

     

    Good question... The licenses for Viprion vCMP are hosted by the unit itself. I THINK from what I understand that if you have a 500TPS license each LTM can do 500TPS... But I could be wrong on that one... I'll have a look around and see what I can find because I'm interested in the answer too.

     

     

    What benefit Web Accelerator Module and Bundle will do?

     

    They will give you all the features of the WAM module (Or bundle). You can view the WAM module features on F5's main website (f5.com).

     

     

    H

     

  • How many of SSL offloading supported in each instance if VIPrion 2400 virtualised to 1 GTM and 2 LTM instances ?i think Hamish is correct. every vCMP guest is able to use a number of SSL TPS according to host's SSL TPS license. there is no partitioning of SSL hardware resource in current software release.