iRule to stop SSLv3 connections

The below iRule written by my team will stop all SSLv3 connections. If you are not using the SSL termination capabilities of your BIG-IP and instead are doing TCP load balancing, then the iRule will ...
Updated Mar 18, 2022
Version 2.0
application delivery
devops
iRules
security
kwkyiu_53019's avatar
kwkyiu_53019
Icon for Nimbostratus rankNimbostratus
Oct 20, 2014
SERVER_DATA is used as client only propose the Max SSL/TLS version it will use. Server shall response with SSL/TLS version that is the negotiated version. So checking CLIENT_DATA will miss cases like client propose TLS 1.2 and server response with SSL 3.0