Forum Discussion

Nimbostratus

Feb 12, 2016

Log SSL Cipher Version and User Agent Info

Hi I need to log if there are connections using SSLv3 Cipher before disabling it. I'm using this code: when CLIENTSSL_HANDSHAKE { ISTATS::incr "ltm.virtual [virtual name] c [SSL::cipher version]...

Nimbostratus

Feb 12, 2016

Hello

Thanks for your answer. Unfortunately I can't redirect to an error page. The service must be available even if you connect with SSLv3 for a while, until we have the stats.

So I need to log just once per connection:

log local0.debug "SSLv3 cipher connection for Client [IP::client_addr]:[TCP::client_port] using [SSL::cipher version], [SSL::cipher name] and [SSL::cipher bits] bits using the Agent [HTTP::header value "User-Agent"]"

And let the connection work.

I have another event with HTTP_REQUEST to detect if the client uses client certificate authentication. Therefore, I can't disable HTTP_REQUEST event

Regards

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Log SSL Cipher Version and User Agent Info

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

TMOS script for updating SSL profile cipher group and TLS versions

Cipher Suites Supported (12.1.5.3)

Most up to date Cipher Suite for version 14.1.x to increase BitSight findings?

Cipher suite mismatch advertisement/warning

Big IP version 12 API

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS