Connecting to invalid Server with SERVERSIDE SSL
I must be reading the documentation wrong. I am trying to ensure a connection to an external TLS server has a valid CA and a valid certificate. I have a virt with a SERVER SSL profile that sets drop for both Expire Certificate Response Control and Untrusted Certificate Response Control. Note it is not clear to me this comes into play when I connect to a server (as opposed to the client side).
I also ran into an issue with the certificate's CN not matching thehost name in the request. That connection is also made without an issue. The ignore setting for Server Certificate is not applcable unless one sets the Authenticate Name (which I have not found a way to do via an iRule).
Is there some magic to accessing remote servers via HTTPS to ensure I am connecting to a server with a valid cert?
I used an interesting site called badssl.com to test this.
Tom Schaefer