v9 "clientssl cipher insert enable" ? equivelent

Question

We are trying to find a v9 featrure that is equivelent to the 4.x  "clientssl cipher insert enable".  Have looked at manual, askf5 etc and could not find a similar optoin in v9. 
  
 The goal is to simply put the SSL cipher information Cipher and Strength to use in an iRule to handle &gt;=128 bit browsers with one pool and redirect if not &gt;=128 SSL. 
  
 We accomplished this with 4.x with "clientssl cipher insert enable" in the SSL proxy and then the following type of iRule. 
  
 rule stuff_sp_rule { 
    if (exists http_header("StuffSSL") and exists http_header("SSLClientCipher") and http_header("StuffSSL") == "BigIP2004") { 
       if (http_header("SSLClientCipher") contains "version=TLSv1/SSLv3" and http_header("SSLClientCipher") contains one of sslbits) { 
          if (http_uri == "/stuff") { 
             redirect to "https://xxx.yyy.zzz/stuff/" 
          } 
          else if (http_uri starts_with "/stuff/") { 
             use pool stuff_sp 
          } 
          else { 
             discard 
          } 
       } 
       else { 
          redirect to "https://xxx.yyy.zzz/ssl_upgrade.html" 
       } 
    } 
    else { 
       discard 
    } 
 }

deb_allen_18 · Answer

These samples should get you going:&nbsp;Click here&nbsp;Click here&nbsp;
&nbsp;/deb

Forum Discussion

v9 "clientssl cipher insert enable" ? equivelent

Recent Discussions

Diameter iRules attachment?

Source IP F5 DNS Zone Forwarder

F5 BIG-IP

BIG-IP Oauth Client and AS

How to Renew F5 Device Certificate

Related Content

HA pair in VMware v7 update 3 - Should "power on connect" be enabled, or disabled for vlans/network?

Why "Do not enable both staging and Add All Entities in the same wildcard entity" ?

why client got "Please enable JavaScript to view the page content." page ?

SSLDUMP "OpenSSL: decryption enabled." meaning..

X-Forwarded For equivelent for SMTP?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS