Forum Discussion

Dran's avatar
Dran
Icon for Nimbostratus rankNimbostratus
Mar 02, 2021

Customised https port with ssl pass through

Hello

 

can I know if the ssl port for application is customised such as 9090 , on virtual server can I configure ssl pass through or I should still add client and ssl for f5 to understand it is a https traffic ??

  • i believe you are turned around the question :)

     

    if you want to do pass through (so no SSL decrypt / possibly encrypt again) you can do that on every port.

     

    if you need to do SSL decrypt (possibly encrypt again) then you need client SSL and possibly server SSL, but also on every port you want.

  • Dran's avatar
    Dran
    Icon for Nimbostratus rankNimbostratus

    Hi  

    Thank you for responding.

    wanted to understand how f5 will understand it is an https traffic, when it is customized https port and we are not applying ssl profiles and doing a ssl pass through...We wouldnt be applying http profile as well right ? and the virtual server is a standard server with port set to 9090 and it would in "other" port category .

  • why does the f5 have to understand it is HTTPS? if it has to do something with it then it might have to, but then you dont do pass through.

     

    from you say, yes, standard virtual server on other port, no http profile either.

  • Dran's avatar
    Dran
    Icon for Nimbostratus rankNimbostratus

    oh ya true, but then when the request comes for https://vip:9090 , since its tcp profile linked, it ll accept the traffic?

    • yes, it will accept the traffic and forward it to the poolmember.

  • Dran's avatar
    Dran
    Icon for Nimbostratus rankNimbostratus

    understood...thank you..much appreciated for your response