f5-appsvcs-extension
f5-appsvcs-extension copied to clipboard
F5Networks
Add Support for serverssl-use-sni Option in Virtual Server Configuration
Is your feature request related to a problem? Please describe.
I would like to request support for the serverssl-use-sni enabled option within the Service_HTTPS configuration. This feature is usefull for handling scenarios where backend servers utilize Server Name Indication (SNI) with multiple certificates.
Describe the solution you'd like
I would like to see the equivalent functionality of the following command in the configuration:
tmsh modify ltm virtual <virtual_server> serverssl-use-sni enabled
Additional context
For further details, please refer to the following Knowledge Base article: https://my.f5.com/manage/s/article/K13452
@ppieprzycki FYI I have opened a support case and received an existing ID 1579129 [RFE] Add support for 'serverssl-use-sni' option in TLS_Client
@ppieprzycki please refer to https://github.com/F5Networks/f5-appsvcs-extension/issues/274
We added a default value to under the SSL profile to select with is default. Use the serverssl-use-sni' option when having multiple. Pre AS3-44 the top profile would be default.
@ppieprzycki please refer to #274
We added a default value to under the SSL profile to select with is default. Use the serverssl-use-sni' option when having multiple. Pre AS3-44 the top profile would be default.
#274 is for client-ssl profiles (TLS_Server) "inbound" SNI support. This issue is for the new-in-BIG-IP-v15 server-ssl (TLS_Client) "outbound" SNI support.
Totally different features.
@ppieprzycki can we setup a quick call. I think i understand what you looking for but want to confirm. Please ping me [email protected] for 15 min zoom call. I want to add this in AS3-53 which begins early July!
Is there any progress on this? This is the option that's being requested https://my.f5.com/manage/s/article/K39408450
Seconding this request for the virtual server level serverssl-use-sni in https://my.f5.com/manage/s/article/K39408450
