Forum Discussion
chester_16314
Nimbostratus
Aug 08, 2013SSL Read Error
I have a strange problem that I'm trying to sort out. I have a vendor (Mandrill) that is POSTing a webhook to a site that I have sitting behind my BigIP. BigIPis managing the certificate for the cl...
unRuleY_95363
Dec 13, 2004Historic F5 Account
It depends on the information you want to insert.
If you just want the SessionId, then you can use something like the following:
when HTTP_REQUEST {
HTTP::header insert [SSL::modssl_sessionid_headers]
}
If you are interested in more of the certificate information, then you will need to additionally use some of the X509:: commands. For example, you may want to do something like the following:
when CLIENTSSL_HANDSHAKE {
set my_cert_0 [SSL::cert 0]
set my_verify_result [SSL::verify_result]
}
when HTTP_REQUEST {
HTTP::header insert [X509::cert_fields $my_cert_0 $my_verify_result versionnum serial sigalg issuer validity subject subpubkey hash]
}
You can, of course, use a smaller subset of the X509::cert_fields.
Hi,
I have done something similar to what you describe. I posted a question which shows sme of my configuration to achive that, you can see it here: Solved: C3D first request problem - DevCentral (f5.com)
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects