For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

jondyke_46152's avatar
jondyke_46152
Icon for Nimbostratus rankNimbostratus
Jan 24, 2011

pass through client certificate irule

I am currenlty using the irule below for performing SSL passthrough on traffic. Is there any way I could midify this irule so that it only passed through SSL traffic that has a client certificate at...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jan 24, 2011
Chris, I think you're right that this wouldn't be simple.

 

 

Jon, if the servers are currently validating the client cert or credentials, why would you need to check for a client cert on LTM?

 

 

I think you either need to do all of the cert validation on LTM with a client SSL profile always enabled, or not try to do it at all on LTM. APM would probably make the cert parsing and validation a lot easier compared with an iRule. But that would require all client SSL be terminated on LTM.

 

 

Aaron