Forum Discussion

Nimbostratus

Nov 21, 2013

iRule for redirecting 128bit RC4-md5 and 128bit RC4-SHA to webpage

Hello I have been asked to deny or block 128bit RC4-md5 and 128bit RC4-SHA user reqeust, so I wrote following iRule when HTTP_REQUEST { log local0. "VIP connection request before if statem...

Nimbostratus

Nov 22, 2013

Thank you Kevin, sure all of the latest browser does support RC4-md5; but I want to make sure cipher that is used in the communication is other than SSLv3 128bit RC4-md5 and SSLv3 128bit RC4-SHA. So every other cipher like TLSv1 RC4-md5 and TLSv1 RC4-SHA, SSLv3 RSA etc is good.

So like I said in client profile I am blocking only SSLv2, low cipher and allowing anything else....so I wanted to write an iRule that check or maybe at SERVERSSL_SERVERHELLO when it sends cipher that needed to be used for the communication which shouldn't be SSLv3 128bit RC4-md5 or SSLv3 128bit RC4-SHA1....

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule for redirecting 128bit RC4-md5 and 128bit RC4-SHA to webpage

AppWorld 2026: Save the Date and Join Our Community In Person!

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Terraform LTM provider - ICMP disabled on resulting VIPs

Need to make 2 Virtual Appliance in r4600 F5

Disabling signature for a URL

XC - geo LB to the origin servers

F5 LACP

Related Content

F5 HTTPS Redirect 2025

(HTTP) Redirection via Arbitrary Host Header

Rewriting Redirects

Anchor Link Redirect

URI Redirect

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS