For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Christopher_Hep's avatar
Christopher_Hep
Icon for Nimbostratus rankNimbostratus
Dec 26, 2006

Redirect based on OCSP Denied

I need some help with a situation for which an iRule is probably required:     Configuration:   - BigIP running 9.1.1.   - Client Authentication module enabled.   - Pool with two https ...
application delivery
dev
devops
iRules
Deb_Allen_18's avatar
Deb_Allen_18
Historic F5 Account
Dec 27, 2006
Hi Chris -

 

 

I would think you could leverage the AUTH_FAILURE event to manage that condition and have LTM serve up an appropriate response.

 

 

Here's an example of an iRule that should have worked: http://devcentral.f5.com/Default.aspx?tabid=28&view=topic&forumid=5&postid=7689 Click here

 

 

This poster was having difficulty getting it to work, but they were running 9.2, and there were several pieces of SSL::cert that worked fine in 9.1 (maint release) that didn't work in 9.2 (feature release).

 

 

So I'd say it's worth trying on 9.1. If you are not successful, post back on the thread above.

 

 

HTH

 

/deb