For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Mathew_58739's avatar
Mathew_58739
Icon for Nimbostratus rankNimbostratus
May 01, 2009

X509 parsing rule

I have a rule that I have been attempting to write. The rule is supposed to exctract the OU value from a client certificate. That part works just fine. It logs out to my /var/log/ltm beautifully. ...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
May 01, 2009
Another thing... using a global variable to store the appcode will work if you're testing with a single client at a time. But the value will be accessible/modified across all TCP connections from all clients. It would be better to store details about the client SSL cert in the session table (Click here) so that it's available on the initial TCP connection as well as any subsequent sessions where the client re-uses the SSL session ID but only for that client.

 

 

Aaron