Determine SSL client profile by client's TLS version

Question

Hello all,&nbsp;
this is my first post in this board, so please do not hesitate to make me aware of any rules or best practices I might have missed.&nbsp;
I am in charge of one BigIP 7000 loadbalancer for telecommunication brand in Germany. The loadbalancer serves an application, which is used by modern HTTP client being capable of TLS v1.2 and SHA-2 certificates and legacy clients being capable of TLS 1.0 and MD5-signed certficates. Both use the same Virtual Server and this cannot be changed.&nbsp;
I was asked to improve security by serving a "good" certificate to the modern clients and a weaker one for the legacy clients. My first idea was to identify the modern clients by the SNI extension. Unfortunately, they do not support this and will not. My second approach was to distinguish the modern from the legacy ones by support of Elliptic Curvers ciphers vs. plain RSA. Unfortunately the modern clients do not support EC, either and will not in future.&nbsp;
My next idea is to have an iRule decide which SSL client profile to provide. Of course we cannot do it based on information in the HTTP header (as far as I understood, it is possible with renegotiation, but honestly I do not like this approach).&nbsp;
Is it possible to evaluate the Client Hello and see the client's TLS protocol and select the SSL client profile based on that?&nbsp;
Any help on this is highly appreciated.&nbsp;
Thanks in advance
Daniel&nbsp;

tatmotiv · Answer

Hi Daniel, welcome aboard.&nbsp;
According to this SOL, it is not possible to use any SSL-related information derived after a CLIENTSSL_CLIENTHELLO event in order to chose an SSL-profile:&nbsp;
It is not possible to utilize SSL::extensions or other SSL commands to make a profile selection using the SSL::profile command. To select a profile based on the Client Hello contents, it is still required to manually interpret the raw TCP data in CLIENT_DATA. Though the Client Hello is where the client proposes ciphers, there is no command to access this information in the event. &nbsp;
As I understand that, this is caused by the fact that CLIENTSSL_CLIENTHELLO is triggered AFTER the selection of a clientssl profile. Hence, in order to solve this with an iRule, you will have to use TCP::collect and - as described in the above solution - manually interpret the raw TCP data in CLIENT_DATA. There might be some examples for that here on devcentral.&nbsp;
However, I could also think of another way to accomplish that:
Can't you find another means of identifying your "newer" clients (e.g. user-agent) and redirect them (using http redirect) to a more secure virtual with higher-level clientssl profile AFTER the initial SSL handshake while leaving the others on the less-secure one? Might be easier to implement...&nbsp;
HTH,&nbsp;
Martin&nbsp;

Forum Discussion

Determine SSL client profile by client's TLS version

Recent Discussions

How to implement LTM forward proxy client to determine the diversion pool based on the domain name

ASM Export JSON - size Limit ?

SNI Sites not taking correct certificate.

LTM Rule, iRule, or Brute Force Configuration to Limit URL Access

F5 LTM listening on 3306

Related Content

Client SSL Profile

Client vs Server SSL profile

F5 BIG-IP Advanced WAF – DOS profile configuration options.

TLS Fingerprinting to profile SSL/TLS clients without decryption

SSL PROFILE - How to use multiple SSL Profile Client in Virtual Server

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS