Forum Discussion

Nimbostratus

Jul 18, 2016

I need to be able to capture source IP on FTPS connection.

I need to capture the source IP for ftps traffic, and match that IP to a FTP session. It is easy enough to create an irule to capture source IP, and have that sent to a logging server, where then spl...

Employee

Jul 18, 2016

Your choices are:

Offload TLS on the BIG-IP (and potentially re-encrypt between BIG-IP and the servers);
Inspect a presented client certificate.

Naturally, 2 only works if a.) a certificate is actually presented by the client; and b.) it is a user certificate, rather than a machine certificate.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

I need to be able to capture source IP on FTPS connection.

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

Failed to execute iptable cmd: ," CMD="iptables -A SSH_ALLOW_RULES error

Cannot ping external interface

HA Failover between two Datacenters

LTM issue Openning new web browser tab

F5 asm/awaf

Related Content

DevCentral Connects hosts Capture the Flag!

Decrypting BIG-IP Packet Captures Automatically

Decrypting BIG-IP Packet Captures without iRules

Automating Packet Captures on BIG-IP

Ultimate irule debug - Capture and investigate

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS