Forum Discussion

Nimbostratus

Jun 11, 2018

Logging more details when SSL handshake fails.

In our F5 setup we are using TLS 1.2 with mutual authentication. Our list of ciphers is limited to only those supported for TLS 1.2 in the clientssl profile. The issue is when a browser connects wi...

Cumulonimbus

Jun 11, 2018

Hi,

can you try this:

when CLIENTSSL_CLIENTHELLO {
    log local0. "From IP: [IP::client_addr] - cipher: [SSL::cipher name] - version: [SSL::cipher version]"
}

For more information:

https://devcentral.f5.com/wiki/iRules.SSL.ashx

regards

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Logging more details when SSL handshake fails.

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

ASN Details

iRule to log traffic details

APM-DHCP Access Policy Example and Detailed Instructions

SSL Profiles Part 1: Handshakes

request logging profile want to log client certificate details

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS