A site needs to terminate client HTTPS traffic at the BIG-IP and forward that traffic unencrypted. Which two are profile types that must be associated with such a virtual server? (Choose two.)
A site needs to terminate client HTTPS traffic at the BIG-IP and forward that traffic unencrypted. Which two are profile types that must be associated with such a virtual server? (Choose two.)
To terminate client HTTPS traffic at the BIG-IP and forward it unencrypted, you need a TCP profile and a ClientSSL profile. The TCP profile is required to handle the basic transport layer operations, as BIG-IP still needs to understand TCP traffic to communicate with the client and servers. The ClientSSL profile is necessary for decrypting the HTTPS traffic from the client. HTTP and ServerSSL profiles are not required in this scenario as the HTTP profile is only needed for advanced HTTP-specific features, and the ServerSSL profile would be used for re-encrypting traffic before sending it to the backend server, which is not needed here.
A and D are correct. http profile is only required for advanced http specific features like header manipulations through iRules, cookie persistence etc. But TCP profile is mandatory.
i think that correct answer is A and D.
My answers are B and D. ServerSSL profile is only required when Big-IP is required to re-encrypt traffic i.e. server is expecting to receive encrypted traffic.
A and E
https://community.f5.com/t5/technical-forum/can-we-have-ssl-offloading-without-having-http-profile-on/td-p/207466
You need to transmit unencrypted traffic so you don't need to use serverssl...http and clientssl are correct