Irule to help root out TLS 1.0 and 1.1 connecting clients?

Question

Hello,&nbsp;I've been asked to assist the dev team in removing TLS 1.0 and 1.1 from our internet facing applications. In order to figure out what clients are still accessing at this level I've been asked to provide two things. Source IP with requested URL/URL for each of the weaker TLS protocol connections. Has anyone ever attempted to build an Irule to log this kind of info? Thanks,  -JD

iaine · Answer

HiSomething like this could be a good starting point.when HTTP_REQUEST {
&nbsp;
if {([SSL::cipher version] == "TLSv1.1") || ([SSL::cipher version] == "TLSv1.0")}{
    log local0. "Client [IP::local_addr] is accessing [HTTP::uri] with [SSL::cipher version]"
    }
}

jd_tomzak · Answer

Thanks! I'll give that a try.Now if I could just make that work in Radware...-JD&nbsp;

Forum Discussion

Irule to help root out TLS 1.0 and 1.1 connecting clients?

Recent Discussions

Is a Dedicated Interface, VLAN, and Self IP Required for a VIP in an F5 Configuration?

REST API to download License JSON report?

question about getting hsl data to be formatted properly in splunk

Problem with lets encrypt and redirect after update

where can find silverline ddos protect config guide?

Related Content

irule to check node connection

client request rule

client connection persistence using an irule

Create iRule condition with matching client IP from multiple IP subnet

iRule rejects connections but there is no reject command

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS