F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Cipher Strength Pool Selection

Problem this snippet solves:

Select a pool based on the client's encryption level.

This rule illustrates how to select a pool based on the client's encryption level.

Code :

rule CipherStrengthPoolSelection {
  when HTTP_REQUEST {
    log local0. "[IP::remote_addr]: SSL cipher strength is [SSL::cipher bits]"
    if { [SSL::cipher bits] < 128 }{
      pool weak_encryption_pool
    } else {
      pool strong_encryption_pool
    }
  }
}
Published Mar 16, 2015
Version 1.0
application delivery
devops
iRules
security
No CommentsBe the first to comment