Decrypting tcpdumps in Wireshark without key files (such as when FIPS is in use)

Problem this snippet solves: This procedure allows you to decrypt a tcpdump made on the F5 without requiring access to the key file. Despite multiple F5 pages that claim to document this procedure, ...
Published Oct 19, 2019
Version 1.0
application delivery
decrypt
fips
iRules
ssl
Super-NetOps
tcpdump
tls
TMSH
Adriano_Bezerr1's avatar
Adriano_Bezerr1
Icon for Cirrus rankCirrus
Nov 27, 2019

I retested the shared procedure in the lab in versions 12.1.2 HF2, 13.1.1.5 and 14.1.2, all of which were successful.

 

Congratulations on the article. 🙂