BigIP Report Old

So this is probably one of the largest asks and I understand if this is not on your roadmap or too difficult to do, but what are the chance that you might incorporate SSL/TLS statics? So every company that uses F5 and provides services in which they have to protect PCI/PAN/PII data (Username/Passwords/Personal Info/CreditCards/etc) are having to adhere to the new PCI regulations which state that you have to be off TLS 1.0 by June 30th 2018. I as are many of my colleges are being asked to provide SSL/TLS stats. The problem is, the stats are accumulative from the last time the F5 was rebooted, so you have to poll the stats in real-time. Below are by in large the stats most are focused on to meet these requirements. Any suggestions are more than welcome by myself and thousands of Admins like myself. In closing this tool you have built is absolutely amazing and I'm floored by the time you have invested. I've started sharing with some of my peers within my org and once I get this secured with APM, I'm planning to share it with peers outside. Thank you!

 

[jeff@EC-LB2:Active:In Sync] ~ tmsh show ltm profile client-ssl /Test/ClientPROD* | egrep -E 'Ltm|Proto' Ltm::ClientSSL Profile: /Test/Client-0120-PROD-SSL

 

Protocol

 

SSL Protocol Version 2 0 SSL Protocol Version 3 0 TLS Protocol Version 1.0 7 TLS Protocol Version 1.1 0 TLS Protocol Version 1.2 16 DTLS Protocol Version 1 0