Forum Discussion
AceDawg_204810
Cirrus
You are correct. In a scenario where the load balancer does not perform ssl encryption/decryption (offloading), ssl negotiation is performed directly between the client and backend pool members (servers).
A typical F5 configuration would be comprised of a virtual server that listens on port 443, server type of standard or layer 4 and backend pool members listening on port 443.
AceDawg_204810
Cirrus
Jun 24, 2018If you are planning to use source IP persistence, my recommendation would be to use performance layer 4 as the virtual server type.
While F5 doesn’t have an official document on this setup, you’ll find that DevCentral is very useful with these types of questions.
Feel free to vote up my answer if this has been useful.