Forum Discussion
j_hardin80
Nimbostratus
NimbostratusTLS1
Forgive me but I'm pretty green when it comes to these F5's. We have an F5 LTM that is load balancing our internal and external email. We just had a pen test done and they saw TLS1 and 1.1 open from ...
Paulius
MVP
MVPj_hardin80 If you are in tmsh you should be able to run the following command to find them relatively quick.
list ltm virtual | grep -E "virtual |<ssl_client_profile_name>"
This will give you multiple lines but the ones you're interested in are the ones with the virtual server name immediately followed by the ssl client profile name that you're interested in. In the command above make sure to replace the entire string "<ssl_client_profile_name>" with the ssl client profile name in question.
j_hardin80Nimbostratus
NimbostratusThank you but I'm not sure it's working for me. No matter what SSL Profile name I use, it gives me the same listing of virtual servers that I know aren't using that profile.
- Paulius
j_hardin80 That is correct, it will output all virtual servers followed by the SSL profile. It would look something like this.
ltm virtual VS_1.1.1.1_443
ltm virtual VS_2.2.2.2_443
CLIENTSSL-myprofile
ltm virtual VS_3.3.3.3_443Notice how you have 2 VS back to back and then an indented SSL profile name. You will have to go through the text that shows up in the terminal and grab all VS names that are immediately followed by the SSL profile you are looking for. I don't know of a better way of searching this without doing some complicated regex search.
- j_hardin80
Unfortunately this is what I'm getting.
I run this command
tmsh list ltm virtual | grep -E "virtual|<name of my ssl profile>"
It returns:
ltm virtual <name of my virtual server> {
but it has all of my virtual servers listed and no duplicates and I don't see any indents with a profile.
- Paulius
j_hardin80 If those are your results then the text for your SSL profile is not an exact match. You need for the text to be an exact match because "grep" is case sensitive.