F5 BIG-IP SSL Orchestrator Training Lab > Class 1: SSL Orchestration > Module 1: Outbound SSLO Source | Edit on
Lab 1.7: Outbound Interception Rules¶
Task 1 - Interception Rules¶
Login to the BIG-IP with Firefox
Navigate to and click:
Click Install Default Rules…
Under Proxy Settings, configure these options:
Property Value Proxy Scheme Transparent and Explicit Proxy Server : Port 10.20.0.150 : 3128 
Under , select Create New. This will redirect to a separate page for configuring SSL settings.
Name the configuration ssloT_ob_ssl
In the Client section, for Certificate Key Chains, select default.crt and default.key, and then click Add
Under CA Certificate Key Chains, select subca.f5demolabs.com.cer and subca.f5demolabs.com.key, and then click Add.
In the Server section, select ca-bundle.crt for Trusted Certificate Authority. Leave all other settings at the defaults. Click Finished.
The screen should have returned to the original Install Default Rules page. Under the Security section, from the Per Request Policy drop-down select Create New
Name the policy ssloP_ob_pol
Under TCP Service Chain, add and order the available services to both the Intercept Chain and Non Intercept Chain:
Repeat step (12) for UDP Service Chain
Click Finish.
Under , choose /Common/client-net from the Available VLANs and add to the Selected section.
Click Finish.