Kemp Support, how can we help?

The latest application delivery knowledge and expertise at your fingertips.

What is difference between SSL offload, SSL re-encryption and SSL Pass-Through.

 

Information

 

Summary: Setting up the SSL setting according to usage.
Environment:

Product: Loadmaster

Version: Any

Platform: Any

Application: Any

Question/Problem Description:

What is the difference between SSL offload, SSL re-encryption, and Pass-Through

Steps to Reproduce:  
Error Message:  
Defect Number:  
Enhancement Number:  
Cause:  
Resolution:

SSL offload: The LoadMaster decrypts incoming HTTPS traffic and sends it to the backend server without encryption i.e. HTTP.
So traffic from the Front-end i.e. Client to Loadmaster is Encrypted, but from the Loadmaster to the backend server it goes unencrypted i.e. HTTP.
In this case, the backend server needs to be HTTP-based.

SSL Passthrough: The LoadMaster doesn’t decrypt incoming HTTPS traffic and forwards it to the backend server as it is.
In this case, the backend server needs to be HTTPS-based.

SSL re-encrypt: The Load Balancer/Proxy decrypts incoming HTTPS traffic and re-encrypts it before forwarding it to the backend server.
In this case, the backend server needs to be HTTPS-based.

Workaround:  
Notes: With SSL Acceleration disabled. You will lose the are leveraging features such as SubVSs, ESP, WAF, and content switching

Was this article helpful?
0 out of 1 found this helpful

Comments