This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

SSL/TLS Offload

If the virtual webserver uses https, and the real webserver http, the WAF offloads the SSL/TLS. But what happpens if you configure the real webserver with https as well? Does the WAF just act as a passthrough, sending everything to the real webserver, or does it still offload by decrypting the initial data between client and UTM and then re-encrypt between UTM and real webserver?

This thread was automatically locked due to age.

Parents

0 BAlfson over 8 years ago

If the idea is to offload the SSL processing from the web server to the UTM, then the Real Server will NOT be defined as HTTPS.

I'm not sure why you would have a separate, internal certificate for the physical server.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 8 years ago

If the idea is to offload the SSL processing from the web server to the UTM, then the Real Server will NOT be defined as HTTPS.

I'm not sure why you would have a separate, internal certificate for the physical server.

Cheers - Bob

Sophos UTM Community Moderator
Sophos Certified Architect - UTM
Sophos Certified Engineer - XG
Gold Solution Partner since 2005

MediaSoft, Inc. USA
Cancel
Vote Up 0 Vote Down

Cancel

Children

0 vilic over 8 years ago in reply to BAlfson

I'm not sure why you would have a separate, internal certificate for the physical server.

Some services like Exchange OWA requires using SSL.
Cancel
Vote Up 0 Vote Down

Cancel