Forum Discussion

Nimbostratus

Dec 12, 2018

SSL disable/enable based on SSL Cipher

I want to enable/disable SSL based on SSL Cipher version. I have created the following iRule, but it does not work as expected. when CLIENTSSL_CLIENTHELLO { log local0. "[SSL::cipher version]...

devops

iRules

youssef1

Cumulonimbus

Dec 12, 2018

Hi,

You want to disable SSL in server side? or client side?

Because if you want to disable SSL on client side it will be dificult. because your negotiation ssl is already started, that's what allows you to determine the protocol...

Can you explain exactly your context / need (why you want to do this). we could give you a better alternative.

regards

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL disable/enable based on SSL Cipher

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

SSO login for APM Profiles

LTM issue Openning new web browser tab

APM VPN LDAP POOL can't contact ldap server.

Can F5 restrict the file types transferred via FTP?

Kerberos Authentication Failing for Exchange 2016 Behind F5 Cloud WAF

Related Content

Enable/Disable pool member

Cipher Suite Practices and Pitfalls

Enable TLS 1.3 and Disable DH group

Future-Proofing Your Network: Enabling Quantum Ciphers on F5 BIG-IP TMOS 17.5.1

Enabling or disabling a pool member

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS