Forum Discussion

Dale_Cooke_1773's avatar
Dale_Cooke_1773
Icon for Nimbostratus rankNimbostratus
Nov 19, 2015

SSL Cipher (reporting, graphing, logging)

We are in the process of disabling weaker Cipher strengths on our https servers, I wondered if anyone has any experience of getting the F5 to log and report on the Cipher strength that each browser s...
iRules
LTM
security
Lee_Payne_53457's avatar
Lee_Payne_53457
Icon for Cirrostratus rankCirrostratus
Nov 19, 2015

We've had a requirement to do this as well, we offload SSL to the LTM device and then apply the following iRule, it logs to the LTM log which we ship off to syslog into a separate file.

 

when LB_SELECTED { log -noname local0. "SSL Cipher [SSL::cipher name] selected by client [IP::remote_addr] for pool [LB::server pool]" }