Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

haeoraki_127471's avatar
haeoraki_127471
Icon for Nimbostratus rankNimbostratus
Apr 13, 2004

Not using SSL mode exists?

Thank for your reply.     When I work with SOAP and Java if I want to analyze the packet , is it possible?   BIG-IP and sample program communicate with SSL. But if not use SSL mode, ...
dev
devops
iControl
v4
Joe_Pruitt's avatar
Joe_Pruitt
Apr 14, 2004
If you truely want to analyze the packets you will have to use ssldump with the server key. If it's just the SOAP payload you want to inspect, Apache SOAP has the following debug runtime flag that prints out the SSL encryption/decryption which will include the decrypted SOAP payload.

 

 

Look for SSL_DEBUG=-Djavax.net.debug=ssl in either the run.sh (Unix) or run.bat (Windows). Uncomment this line and you should see the SOAP messages displayed on the console.

 

 

As for your encodingStyle question, I'm not quite sure what you are referring to. You must not modify the WSDL documents as they describe how our server expects the messages to be formatted. Any changes to the binding contract will cause the interface to not recognize the request. Why did you delete the encodingStyle value?

 

 

-Joe