RE: F5 and similar

From: Fernando Cardoso (fcardoso_at_trusted.pt)
Date: 08/27/03

Next message: jatkinson: "Re: F5 and similar"

Previous message: Gareth Bromley: "Re: F5 and similar"
In reply to: Marc W.: "Re: F5 and similar"
Next in thread: Joao Gouveia: "Re: F5 and similar"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: <pen-test@securityfocus.com>
Date: Wed, 27 Aug 2003 16:03:05 +0100

Actually it can be a single BigIP box with a accelerator card or a couple of
boxes, one doing load-balancing and the other taking care of SSL.

If there are two boxes in the network, the accelerator will handle the SSL
session and, as you mention, will forward the unencrypted traffic to the
second box where the load-balancing will take place.

Fernando

>
> If they are using the SSL-Accelerator (which is a seperate box than
> their load-balancer AFAIK) then yes, any 443 probes you launch will be
> hitting the F5 box, not the webservers. Your diagram is correct -- The
> SSL-Accelerator will be handling the actual encrypted sessions and
> forwarding them into the intranet unencrypted to their http servers.
> The F5 box does all the SSL-side traffic.
>
> Marc W.

Trusted Systems - http://www.trusted.pt
Praça de Alvalade, n.º 6 - 6.º piso
1700-036 Lisboa, PORTUGAL
Tel: +351 217994200
Fax: +351 217994242

--
A presente mensagem pode conter informação considerada confidencial.
Se o receptor desta mensagem não for o destinatário indicado, fica
expressamente proibido de copiar ou endereçar a mensagem a terceiros.
Em tal situação, o receptor deverá destruir a presente mensagem e por
gentileza informar o emissor de tal facto.
Privileged or confidential information may be contained in this
message. If you are not the addressee indicated in this message, you
may not copy or deliver this message to anyone. In such case, you
should destroy this message and kindly notify the sender by reply
email.
---------------------------------------------------------------------------
FREE Trial!
New for security consultants and in-house pros: FOUNDSTONE PROFESSIONAL 
and PROFESSIONAL TL software. Fast, reliable vulnerability assessment 
technology powered by the award-winning FoundScan engine. Try it free for  21 days at: http://www.securityfocus.com/sponsor/Foundstone_pen-test_030825
----------------------------------------------------------------------------

Next message: jatkinson: "Re: F5 and similar"

Previous message: Gareth Bromley: "Re: F5 and similar"
In reply to: Marc W.: "Re: F5 and similar"
Next in thread: Joao Gouveia: "Re: F5 and similar"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]