cancel
Showing results for 
Search instead for 
Did you mean: 

Problem this snippet solves:

Select a pool based on the client's encryption level.

This rule illustrates how to select a pool based on the client's encryption level.

Code :

rule CipherStrengthPoolSelection {
  when HTTP_REQUEST {
    log local0. "[IP::remote_addr]: SSL cipher strength is [SSL::cipher bits]"
    if { [SSL::cipher bits] < 128 }{
      pool weak_encryption_pool
    } else {
      pool strong_encryption_pool
    }
  }
}
Version history
Last update:
‎16-Mar-2015 15:55
Updated by:
Contributors