Decrypting tcpdumps in Wireshark without key files (such as when FIPS is in use)

Problem this snippet solves: This procedure allows you to decrypt a tcpdump made on the F5 without requiring access to the key file. Despite multiple F5 pages that claim to document this procedure, ...
Published Oct 19, 2019
Version 1.0
application delivery
decrypt
fips
iRules
ssl
Super-NetOps
tcpdump
tls
TMSH
Adriano_Bezerr1's avatar
Adriano_Bezerr1
Icon for Cirrus rankCirrus
Nov 29, 2019

In the previously applied test was on a production VS, I restricted access to the client IP only, because this VS has more than 5k connections.

 

Great article you wrote. Cheers! 👊