LTM 11.x - Multiple SSL polices in one virtual

Question

Hi&nbsp;
We have an F5 with a single SSL virtual which has 3 websites (lets refer to them as PROD/UAT/PP) behind it. each website has its own server entrust certificate.&nbsp;
We have created the certs and loaded them into the profiles. if we do the openSSL tests to the frontend interface the certs resolve ok.&nbsp;
The profiles are referenced as Prod-profile/UAT-profile/PP-profile and are stated in that order in the virtual. When a request comes into the virtual for a page on the PP website there are hits on the Prod-profile, but not on the UAT-profile or PP-profile. &nbsp;
We get a 'server hangup' webpage returned, we know the website does work and we even had it working through the F5 for about 30 mins before we changed the irules that were assigned to the virtual.&nbsp;
Is there anything we need to know about multiple profiles assigned to one virtual on version 11?&nbsp;

matt_dierick · Answer

Hi,&nbsp;
You can use SNI : &nbsp;
http://support.f5.com/kb/en-us/solutions/public/13000/400/sol13452.html?sr=38453862https://devcentral.f5.com/articles/multiple-certs-one-vip-tls-server-name-indication-via-iruleshttps://devcentral.f5.com/questions/multiple-ssl-client-profiles-for-one-virtual-server

Forum Discussion

LTM 11.x - Multiple SSL polices in one virtual

1 Reply

Recent Discussions

import live updates from version x to version y

Tenant image upgrade

iRule editor partition button does not work

F5Access | MacOS Sonoma

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

Integrating SSL Orchestrator with Fortinet FortiGate Virtual Edition as a Virtual Wire

multiple certificate on one virtual server

Quick Optimizations for F5 BIG-IP Virtual Edition

Remove iRule From Multiple Virtual Servers

iRule for multiple host to multiple pools and redirect path on one host.