Forum Discussion

Altostratus

Feb 05, 2026

sslprovide (--f5 ssl) does not generate CLIENT/SERVER_TRAFFIC_SECRET on server-side TLS traffic

When I enable the sslprovider and start a tcpdump on the server-side in order to decode TLSv1.3 traffic, only the CLIENT_HANDSHAKE_TRAFFIC_SECRET and SERVER_HANDSHAKE_TRAFFIC_SECRET 'keys' are stored...

application delivery

security

Juergen_Mang

MVP

Feb 09, 2026

I always use this script to grab and reinject the secrets: https://github.com/JuergenMang/f5-tls-decrypt

You can check it to see if the issue is within tshark.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

sslprovide (--f5 ssl) does not generate CLIENT/SERVER_TRAFFIC_SECRET on server-side TLS traffic

Win Big in Vegas: The iRules Contest is back with $5k on the line at AppWorld 2026

Jürgen - February 2026 Featured Member

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

Block specific URL's in APM

Sizing calculation storage

Upgrading vCMP guest

API Pre-Authentication

Pre & Post validation of F5 configuration

Related Content

Decrypting TLS with the tcpdump sslprovider

Client-side vs Server-side Load Balancing

Client side to server side SNI relay iRule

Mitigating OWASP Web Application Risk: Server Side Request Forgery (SSRF) using F5 BIG-IP

Mitigating OWASP API Security Risk: Server-Side Request Forgery (SSRF) using F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS