SSL bridging

When SSL bridging is configured, the Load Balancer decrypts the HTTPS traffic and then re-encrypts it before sending it on to the application server.

For a system that uses SSL bridging, associate the virtual server with a client and server SSL/TLS profiles.

• The Client SSL/TLS profile is used for clients connecting to the LB, and should be associated with a certificate that includes the entire CA chain, and has the LB name in its Subject field (Common Name).
• The Server SSL/TLS profile is used when the LB is connecting to the Mobile Gateway Servers with HTTPS, and does not need to be associated with a certificate. It is needed, however, to make sure that the LB trusts the root CA that signed the Mobile Gateway Servers' certificates.

Example: SSL client profile

This example shows how to configure the SSL/TLS client profile on the F5 BIG-IP LTM.

The client SSL/TLS profile is configured for clients connecting to the LB.