F5 BIG-IP SSL Orchestrator Training Lab > Class 1: SSL Orchestration > Module 1: Outbound SSLO Source | Edit on
Lab 1.7: Outbound Interception Rules¶
Task 1 - Interception Rules¶
Login to the BIG-IP with Firefox
Navigate to
and click:Click Install Default Rules…
Under Proxy Settings, configure these options:
Property Value Proxy Scheme Transparent and Explicit Proxy Server : Port 10.20.0.150 : 3128 Under Create New. This will redirect to a separate page for configuring SSL settings.
, selectName the configuration ssloT_ob_ssl
In the Client section, for Certificate Key Chains, select default.crt and default.key, and then click Add
Under CA Certificate Key Chains, select subca.f5demolabs.com.cer and subca.f5demolabs.com.key, and then click Add.
In the Server section, select ca-bundle.crt for Trusted Certificate Authority. Leave all other settings at the defaults. Click Finished.
The screen should have returned to the original Install Default Rules page. Under the Security section, from the Per Request Policy drop-down select Create New
Name the policy ssloP_ob_pol
Under TCP Service Chain, add and order the available services to both the Intercept Chain and Non Intercept Chain:
Repeat step (12) for UDP Service Chain
Click Finish.
Under Available VLANs and add to the Selected section.
, choose /Common/client-net from theClick Finish.