For a secure iSession™ deployment, you must use SSL encryption to secure the endpoints of the iSession™ connection. The default SSL profile settings on BIG-IP® WOM® Quick Start screen are sufficient to get WAN Optimization Manager™ up and running in a demo environment or for testing. F5 recommends that, to secure the WOM endpoints, you specify SSL profiles that use a WOM-specific root certificate (cert) from a trusted certificate authority (CA).
The process of securing a WAN optimization deployment using SSL includes creating a cert for each BIG-IP® WOM® endpoint, and then specifying this cert (along with its associated key) in WOM-related profiles and settings on the system. Before you start this procedure, ensure that you have configured BIG-IP WOM on both sides of the WAN. This implementation is based on the default WOM settings, except where noted.
The following illustration shows the network setup. The example in this implementation uses the specified IP addresses.