Can ASM analyze SSL traffic using the server's private key?

Question

Hi all,
I was wondering if F5's ASM can be deployed in such a way that it does not terminate SSL traffic but uses the server's private key to decrypt and sanitize the traffic and then encrypt it again to send it to the web server.&nbsp;
(Something like the first option in the first answer in this post)&nbsp;

nathe · Answer

I wonder if this feature would help you here Proxy SSL. It doesn't terminate the SSL connection but does allow ASM to inspect the traffic.&nbsp;
Hope this helps,&nbsp;
N&nbsp;

zebos_116800 · Answer

Interesting, it may be what I'm looking for, I'll take a look, thanks nathan!&nbsp;

mike_maher · Answer

I use the Proxy SSL feature in situations where I need a client certificate to pass down to the server. It is very easy to configure and works very well. SSL termination happens at the server and you still get ASM inspection. Basically you are just playing man in the middle.

Forum Discussion

Can ASM analyze SSL traffic using the server's private key?

3 Replies

Recent Discussions

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Related Content

Evaluate WAF Policy with BIG-IQ Policy Analyzer

fellow traffic

Route traffic to specific sorry server path

Block traffic

Getting TCP Reset-0 from server when routing HTTPS traffic via F5