Forum Discussion

Altostratus

Jul 25, 2014

Unable to generate PMS Key to decrypt SSL Traffic in Wireshark.

Hello Folks, Recently I was troubleshooting an issue, where SSL Offloading was configured on F5. I wanted to wrap off the TLS in order to analyze HTTP traffic. While generate the PMS key, I found f...

Historic F5 Account

Jul 25, 2014

Hi Darshan, I'm not very familiar with that error. What little testing I did shows this may be due to using the wrong name. There is dtca.key, but no dtca1.key:

 ssldump -k /config/ssl/ssl.key/dtca.key -r /var/tmp/this.dmp port 443
 ssldump -k /config/ssl/ssl.key/dtca1.key -r /var/tmp/this.dmp port 443
Problem loading private key
ERROR: Couldn't create network handler

Hope this offers some help.

Kevin

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Unable to generate PMS Key to decrypt SSL Traffic in Wireshark.

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

How to configure ssh access by key on F5OS

F5 BIG-IP DNS/Audit Logs — Structured Format for SIEM Ingestion

Bot Defense causing a lot of false positives

Recommendation for Adv. Lab

iRules for recreation: HTTP Protocol Parser implemented using BIG-IP iRule(unfinished)

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Understanding IPSec IKEv2 negotiation on Wireshark

Understanding IPSec IKEv1 negotiation on Wireshark

encrypted cookie generation and decryption

Decrypting TLS traffic on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS