For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Michael_57131's avatar
Michael_57131
Icon for Nimbostratus rankNimbostratus
Apr 14, 2017

Clear SSL state

Is there an iRule option to clear the SSL state, like what can be done in IE in the internet options with the Clear SSL state in content settings?  
BIG-IP
iRules
security
Michael_57131's avatar
Michael_57131
Icon for Nimbostratus rankNimbostratus
Apr 17, 2017

OMG. Today, I learned you actually can't do everything in an iRule, there are other technologies. Crazy.

 

Love iRules, but it wasn't the right approach. That session state is maintained in the browser's cache, i'm convinced. Renegotiating and disabling the SSL session cache on the server wasn't enough.

 

In the content now i'm sending some javascript i found from another forum. Now the content back looks like:

 

HTTP::respond 200 content "Refreshing

 

$sid

 

$flow"

 

sid and flow were just my debugging. I just need to get the iRule to do a while loop with a maximum retry count and I'll be good. that document.execcommand('ClearAuthenticationCache') is what i needed and it appears to run something like this: c:\windows\system32\rundll32.exe "c:\Windows\system32\wininet.dll",DispatchAPICall 3