Forum Discussion
SNI iRule problem
i'm using this iRule to make multiple SSL on a single VIP
https://devcentral.f5.com/wiki/iRules.TLS-ServerNameIndication.ashx
it works without problem on supported browser, and I know that under XP+any IE version should I get the default SSL certificate. But in my case, when connect from IE8+XP i got session dropped and on LTM logs this error:
TCL error: SNI_Rule - can't read "tls_extenlen": no such variable while executing "for { set x 0 } { $x < $tls_extenlen } { incr x 4 } { set start [expr {$x}]
If I've understood the rule, my browser should not send any type of information in the TLS_session..
i'm currently running 10.2.4 HF3
hope someone can help me
thanks!
6 Replies
- ok, i found that disabling TLS 1.0 under IE properties "fix" the problem.. but for example, the same problem appear if I try to access the VIP from a BB smartphone
- doing other tests and put some log point, i've seen that no-SNI capable browser in this statement:
- Giammarco:
- I did verify your fix, and I altered the iRule in the Wiki appropriately. Thanks!
- Hi Joel,
- Giammarco: No problem at all. It's in 11.1.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com