SSL proxy : The SRX intercept at the IP layer establish a TCP connection with both the server & the client , exchange its own certificate with the client and use the server certificate to communicate with the server.
SSL offload: like flow mode, SRX scan the traffic without interecpt ...
1) is my understanding correct regarding offload & proxy ?
2) Inorder for SRX to scan traffic without intercept, the server private key must be loaded on the SRX, How to perform this task & is it possible to use the server certificate itself on the srx ??