SSL Bridging verification

Is there an easy way to veriify that SSL Bridging is working on an F5 LTM? I need to determine that an SSL session between the client and the F5 has been made and subsequently an SSL session between ...

application delivery

Paulius
Sep 19, 2023
socvirgin23 The best way to verify this is to perform a tcpdump for the virtual server in question. You can be 99% certain that if you have SSL termination on the F5 and then re-encrypting when you send it to the pool member then that is what the F5 is doing. You should be able to use the following tcpdump on the F5 to save the capture and then open it up in wireshark and verify that the traffic is indeed encrypted.

tcpdump -nni 0.0:nnp <virtual_server_IP> -w /shared/tmp/mycap.pcap

The capture above will save itself to /shared/tmp/ as filename mycap.pcap so once you end the tcpdump that file should have all the data that you're looking for, provided that you tested that specific virtual server when you had the capture running. You should see two connection one between the client and the F5 and then another between the F5 and the pool member. You can track the tcp connection by looking for the ephemeral port that the client used because the F5 does its best to reuse that ephemeral port between itself and the pool member when forming that side of the tcp connection.

Forum Discussion

SSL Bridging verification

Recent Discussions

iRule resulting in too many redirects

When F5OS r2800 appliance reboots, interfaces configured at tenant level for VLAN are lost

cat and grep command for rst messages

iControl for Gtm wideip

Telemetry streaming to Elasticsearch

Related Content

Integrating SSL Orchestrator with CheckPoint Firewall VM-Bridge Mode (L2)

Configure NGINX microgateway for MTLS termination and client certificate hash verification

SSL protocol mismatch

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

SSL Profiles