Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

BaltoStar_12467

Nov 26, 2013

irule determine if request is ssl

Within iRule , how to determine if request is SSL ?

4 Replies

Lee_Payne_53457
Cirrostratus
Nov 26, 2013
within the iRule look for the CLIENTSSL_CLIENTHELLO triggering.

https://devcentral.f5.com/wiki/irules.CLIENTSSL_CLIENTHELLO.ashx
Kevin_Stewart
Employee
Nov 26, 2013
Assuming you had a VIP that was listening on multiple ports, probably the easiest thing would be to simply evaluate the port in a layer 4 event. Example:

when CLIENT_ACCEPTED { if { [TCP::local_port] equals "443" } { this is most likely an SSL request } }
Emad
Cirrostratus
Nov 27, 2013
use CLIENTSSL_CLIENTHELLO for loging SSL requests.
Thomas_Gobet
Nimbostratus
Nov 27, 2013
Also, keep in mind that an iRule without SSL offloading has limited capabilities.

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5