Thanks Andrew, that did help, Just follow-up on certificates, is it also required for all the Web application URLs that we onboard? The context is when an organization has multiple URL's accessed by clients and traffic passes through LB as per architecture. So every application URL that we onboard for SSL offloading once that certificate expires, needs to be renewed on a timely manner for the SSL offloading functionality to be performed?