Forum Discussion

Nimbostratus

Dec 16, 2020

Log the TLS version of a client connecting to a TCP VIP with no HTTP or client-ssl Profile

Hello, I have a TCP VIP on port 995 with no HTTP Profile or client-ssl profile. There are several clients that makes SSL connections to this VIP. I need to know the client SSL/TLS version. ...

Noctilucent

Dec 17, 2020

Hi ,

This cannot be achieved with your existing setup. You have to offload the traffic to get that information. It clearly tells you on the log error message.

01070394:3: CLIENTSSL_HANDSHAKE event in rule (/Common/TLS-Version-2) requires an associated CLIENTSSL profile on the virtual server (/Common/vs_exchange-2016_pop3_MWDC).

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Log the TLS version of a client connecting to a TCP VIP with no HTTP or client-ssl Profile

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

[ASM] : SQL-INJ "end-quote UNION" - How to allow this signature to specific url/uri/parameter only

[ASM] - How to disable the SQL injection attack signatures

[ASM] : "Request length exceeds defined buffer size " - How to increase the limit ?

Help with SSH Virtual Server

Related Content

SSL Profiles Part 8: Client Authentication

SSL Client Certification Alert 46 Unknown CA

Client SSL Authentication on BIG-IP as in-depth as it can go

Thumbprint of the client ssl certificate

Client SSL Profile

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS