F5 rule for TLS redirect

Question

Hi i am beginner trying to get a F5 rule to work. So any request that comes in with less than TLS 1.2 should redirect to a default page. Now i need to create a exception to this? Except for one URL send all other &lt; TLS1.2 to the default page. Here are my rules&nbsp;
when CLIENTSSL_HANDSHAKE {
    if { [SSL::cipher version] equals "TLSv1.2"  } then {
        set deny_reason ""
    } else {
        set deny_reason [URI::encode [b64encode "Denied SSL Handshake for Client [IP::client_addr]:[TCP::client_port] using [SSL::cipher version], [SSL::cipher name] and [SSL::cipher bits]"]]
    }
  }&nbsp;
when HTTP_REQUEST {
if { ($deny_reason ne "") and not ([HTTP::uri] starts_with "/myvalue")} then {
HTTP::respond 302 Location "MyURL?reason=$deny_reason" Cache-Control No-Cache Pragma No-Cache Connection Close
}
}&nbsp;
This rule breaks every thing and the website does'nt work. Appreciate any help.&nbsp;

stanislas_piro2 · Answer

Did you look at the ltm log file? Is there tcl error events?&nbsp;

stanislas_piro2 · Answer

Please, when you post content, use formatting buttons just above text to make it readable!&nbsp;

Forum Discussion

F5 rule for TLS redirect

2 Replies

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

error code 503 redirect irule

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

Any way to cache HEAD request

iRule Pool member(s) offline or disabled

Restful API call takes too long

Related Content

F5 HTTPS Redirect 2025

F5 Distributed Cloud Origin Server Subset Rules

LTM Cipher rule

F5 Rules for AWS WAF - Rule ID to Attack Type Reference

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS