Forum Discussion

Spidey_29396

Nimbostratus

Feb 24, 2016

how to validate what cipher has been used in SSL transaction

Hi All, Just want to confirm on how we can validate if cipher used in ssl transaction is RSA? Thanks!

Feb 24, 2016

Or you can use:

when CLIENTSSL_HANDSHAKE { 
log local0. "CLIENTIP [IP::client_addr] SSL Cipher: [SSL::cipher name]"
 }

David_Stout

Nimbostratus

Feb 24, 2016

I used an iRule to log this and then tailed the ltm log file

when HTTP_REQUEST {

    if { [info exists logged] && $logged == 1 }{
         Do nothing. Already logged for this connection
    } else {
        set logged 1
        log "Rule CIPHER_logging fired, from [IP::remote_addr] to vip [IP::local_addr] Cipher [SSL::cipher name]:[SSL::cipher version]:[SSL::cipher bits] Client:[HTTP::header "User-Agent"]:[HTTP::host]"
    }
}

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

how to validate what cipher has been used in SSL transaction

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

POC: Validate JWT with iRule

Cipher Suites Supported (12.1.5.3)

Cipher Suite Practices and Pitfalls

LTM Cipher rule

Disabling Weak Ciphers

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS