# SSL Termination

SSL operations need to be changed to Prophaze WAF itself. It needs to decrypt the encrypted data to get access to HTTP data to identify any known threats in the post content, etc. WAF can then communicate with the server in plain text or SSL.

Having a copy of the SSL private key in the WAF can decrypt the encrypted traffic. The original requests and responses are never affected; they reach the web server, where they are separately decrypted.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.prophaze.com/master/ssl-termination.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.