Forum Discussion

Nimbostratus

Jul 27, 2015

SSLDump ServerSide

Hello Devcentral, I want to ask you how I can examine the SSL traffic between the BIG IP and the backend server. The scenario is the following: Client 1. <--SSL--> 2. (offloading) BIGI...

Employee

Jul 27, 2015

Here's what that ssldump command should look like (once you've imported the server's SSL private key):

ssldump -k [path to server's private key] -AdNn -i 0.0 port 443 and host [IP of server]

As Seth mentioned, you definitely want to turn off OneConnect while testing because ssldump needs to be able to see the original SSL handshake. This command will dump all of the cleartext data to the command line.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSLDump ServerSide

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

SSL Bridging and FQDN rewrite Policy

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Could not communicate with the system. Try to reload page.

F5 BIG IP laboratory license

F5 mssql health monitor failing

Related Content

Serverside SNI injection iRule

Troubleshooting TLS Problems With ssldump

behavior of SSL::disable serverside

Insert Client Certificate In Serverside HTTP Headers

Giving back to the Dev Community: ssldump data decrypt

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS