Forum Discussion

Icon for Nimbostratus rank

Nimbostratus

Jan 29, 2018

F5 LTM - cipher logging

Hello,

I am trying to log all ciphers using on an LTM, I believe it is done through an Irule but need help with the full string.

Thanks

application delivery

2 Replies

Andy_McGrath
Cumulonimbus
Jan 29, 2018
Are you trying to log all ciphers used during SSL connections?

Think you can use something like the SSL::cipher iRule command: iRules SSL::cipher

when HTTP_REQUEST { log local0. "[SSL::cipher name], [SSL::cipher version], [SSL::cipher bits] }

Not sure if HTTP_REQUEST is the best event to use though as will log every request when you likely only want to log once per SSL session.
Surgeon
Ret. Employee
Feb 21, 2018
Have you applied the iRule to the VIP in question?

Do you have a Client SSL profile applied to the VIP in question? If your back-end server ssl based then you have to apply server side ssl profile too for both side ssl offload.

If there is no SSL profile applied, big-ip will not do ssl offload and you will not be able to identify negotiated cipher suit

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Bram - January 2026 Featured Member

DevCentral News

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Community Articles

application delivery

container ingress services

F5 Architecture Track Sessions - AppWorld 2026

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5