Forum Discussion

Nimbostratus

Dec 16, 2020

Log the TLS version of a client connecting to a TCP VIP with no HTTP or client-ssl Profile

Hello, I have a TCP VIP on port 995 with no HTTP Profile or client-ssl profile. There are several clients that makes SSL connections to this VIP. I need to know the client SSL/TLS version. ...

MVP

Dec 17, 2020

Hi ,

This cannot be achieved with your existing setup. You have to offload the traffic to get that information. It clearly tells you on the log error message.

01070394:3: CLIENTSSL_HANDSHAKE event in rule (/Common/TLS-Version-2) requires an associated CLIENTSSL profile on the virtual server (/Common/vs_exchange-2016_pop3_MWDC).

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Log the TLS version of a client connecting to a TCP VIP with no HTTP or client-ssl Profile

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

Client SSL Profile

SSL 3.0.7 - Unsafe legacy renegotiation disabled on client side

Client vs Server SSL profile

Connect to version 14 and above with Powershell iControl

Client ssl certification bulk installation

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS