Forum Discussion

Cirrus

Jul 20, 2022

Decrypting SSL traffic - PMS and egress

Hi - two questions combined. Background - trying to catch and decipher tcpdump both for Client -> VIP and F5-> Pool Members traffic I'm following this tutorial: Decrypt with tcpdump --f5 ssl I ma...

MVP

Jul 20, 2022

I have now uploaded my sycript to generate the pms file out of the tcpdump file with enabled sslprovider. This script works for all TLS versions and decrypts clientside and serverside traffic.

I use this script in my daily job and I hope it could help other people also!

https://github.com/JuergenMang/f5-tls-decrypt

Ichnafi

Cirrostratus

Mar 04, 2024

Juergen_Mang

thank you for sharing your script.

Sorry to bump this old thread.

For some reason only the client side traffic get's decrypted. Communication between LTM and nodes are still encrypted. I'm using the tcpdump command as mentioned in your github.

Any idea?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)