For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

PicassoMendez's avatar
PicassoMendez
Icon for Nimbostratus rankNimbostratus
Oct 04, 2013

iRule config to Rewrite SSL Header for Transactions

We need to pull three values out of the Client SSL and put them in the Server SSL. Currently we tried using a rule that creates a Session Table to store these. Since this is a API and not a web pag...
application delivery
design
devops
iRules
performance
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Oct 04, 2013

Ahh, well then the server SSL doesn't matter. Actually, and I believe this behavior changed not too long ago, the SSL::cert information should persist across requests, so you should simply be able to do something like this:

when HTTP_REQUEST {
    HTTP::header insert CERTDATA "[SSL::verify_result] - [X509::serial_number [SSL::cert 0]] - [X509::issuer [SSL::cert 0]] - [X509::subject [SSL::cert 0]]"
}