Refer the model config below:
You might be well aware of applying for SSL certificates with CAs, however I am giving you the procedure below if you are not.
For the server side SSL termination, generate a 'certificate-request' on the server and use it at verisign.com.au web site. You can apply for a full certificate an year long or two for a fee. You can also get a 30-day free signed certificate I hope.
Once received the singed-certificate from verisign upload it onto your server. I think you might need one certificate for each server per url but not sure.
owner westernsydney_uni
content http
add service server1-http
add service server2-http
add service server3-http
protocol tcp
port 80
url "//xxx.xxx/*"
balance aca
vip address yy.yy.yy.yy
active
content https
protocol tcp
port 443
add service server1-https
add service server2-https
add service server3-https
balance srcip
vip address yy.yy.yy.yy
active
service server1-https
ip address xx.xx.xx.xx
protocol tcp
port 443
keepalive tcp-close fin
keepalive port 443
active
service server2-https
ip address xx.xx.xx.xx
protocol tcp
port 443
keepalive tcp-close fin
keepalive port 443
active
service server3-https
ip address xx.xx.xx.xx
protocol tcp
port 443
keepalive tcp-close fin
keepalive port 443
active
service server1-http
ip address xx.xx.xx.xx
protocol tcp
port 80
keepalive type tcp
keepalive port 80
keepalive tcp-close fin
active
service server2-http
ip address xx.xx.xx.xx
protocol tcp
port 80
keepalive type tcp
keepalive port 80
keepalive tcp-close fin
active
service server3-http
ip address xx.xx.xx.xx
protocol tcp
port 80
keepalive type tcp
keepalive port 80
keepalive tcp-close fin
active
