Hi Team!
- F5 BigIP (LB) terminates the (m)TLS
→ there are sometimes more than 1 DNS is resolved to the same VIP
→ server-cert contains the different DNSs in Subject Alternative Name
-
LB forwards the request to an istio ingress with SNI
-
Apigee X / Hybrid runime processes the requests
In the debug session I can see a variable called x-apigee-tls-server-name.
AFAIK x-apigee-* headers are reserved for being used by Apigee.
I haven’t found any documentation about this variable apart from tls.server.name . Is it the same?
Could you please help us understanding which component, when and how does populate this x-apigee-tls-server-name variable?
Thank you in advance,
Br,
Marcello