Some SSL Orchestrator Questions
Just upgraded to 13 code on our F5 and noticed I now has a nice GUI and setup for the SSL Orchestrator. I know this was available via an iApp but I never had the time to play with it. Now that it is built in, i was wondering a few things before i start playing with it.
-
If traffic is sent to a "Receive Only Services" and the receive only device sees malware, is it already too late to prevent the traffic from going on since it's a copy of the decrypted traffic?
-
"Inline Services" needs two interfaces to work on the F5? Is it possible to setup a single arm setup on a new interface to send the traffic too?
-
To allow the decryption to occur, do you have to have a cert on the F5 that both the client and the server trust? Is it possible to just have the cert trusted by the server so that the users are not prompted o their end and don't notice any difference from their end?
Thanks in advance!