VS on any port with pool members on any port while offloading client ssl and using server ssl

Question

Hello dear F5 experts,&nbsp;
Is it possible to setup the following:
- 1 VS with All Ports -&gt; 1 Pool with same ports
- while offloading client SSL
- AND using different SSL for pool members&nbsp;
In other words, if a request reaches VS:3000, SSL is offloaded, and a server SSL is used for random Member:3000. Have both certificates and keys of course.&nbsp;
I know this is possible per port in combination with application services, but if I have 2000 ports to cover, I really don't want to maintain a VS or App per port.&nbsp;

patrik_jonsson · Answer

Should be no problem.&nbsp;
Make the VS listen to any portDisable port translation in the VS configAdd client and server SSL profiles in the VS config
Members still has to be added by port, but clients will be sent to whatever destination port they came in with.&nbsp;
/Patrik&nbsp;

Forum Discussion

VS on any port with pool members on any port while offloading client ssl and using server ssl

1 Reply

Recent Discussions

Geo Fence in ASM through irule for URI

Client certificate Authentication - open multiple tabs

google autenticator broken barcode

Chrome V 124+ on MacOS - Virtual Server Access Issue

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Related Content

DevCentral's Featured Member for March - Thomas Dahlmann

DevCentral's Featured Member for April - Mihai Cziraki

DevCentral's Featured Member for December - Mohamed Kansoh

FTPS Offload via iRules

HTTPS offload rewriting