Forum Discussion

Nimbostratus

Nov 21, 2013

iRule for redirecting 128bit RC4-md5 and 128bit RC4-SHA to webpage

Hello I have been asked to deny or block 128bit RC4-md5 and 128bit RC4-SHA user reqeust, so I wrote following iRule when HTTP_REQUEST { log local0. "VIP connection request before if statem...

Employee

Nov 21, 2013

How about you specify the ciphers available to be used in the Client SSL profile and exclude that cipher group?

https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13171.html?sr=33336842

As you say, the cipher is decided by the server so you could catch the server response, allow the SSL handshake to continue and when you see an HTTP_REQUEST then redirect it. Does that make sense?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule for redirecting 128bit RC4-md5 and 128bit RC4-SHA to webpage

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Terraform LTM provider - ICMP disabled on resulting VIPs

Need to make 2 Virtual Appliance in r4600 F5

Disabling signature for a URL

XC - geo LB to the origin servers

F5 LACP

Related Content

F5 HTTPS Redirect 2025

(HTTP) Redirection via Arbitrary Host Header

Rewriting Redirects

Anchor Link Redirect

URI Redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS