The end goal is to constrain front-end traffic to only certified clients and route them based on the request to various backend servers. This way the servers don’t need to worry about authentication as reaching the server is only possible as a certified client through the front end. I had changed it to verify optional for testing purposes but if I switch it back to verify required then the client will have to handshake with the front end in order to reach the backend?