Best way to pass http header by iRule containing Client TLS information

Question

Hi All,&nbsp;We are planning to identify TLS connection information from clients. ie: TLS version, CIPHER suitsHow can we trap and pass through this client information via HTTP header so application team can analyse.Thanks.

enes_afsin_al · Accepted Answer

Hi Moinul_Rony,
when HTTP_REQUEST {
	HTTP::header insert X-Forwarded-TLSVersion [SSL::cipher version]
	HTTP::header insert X-Forwarded-CipherName [SSL::cipher name]
	HTTP::header insert X-Forwarded-CipherBits [SSL::cipher bits]
}
&nbsp;

moinul_rony · Answer

Thansk&nbsp;Enes_Afsin_Al&nbsp;,&nbsp;Do you happen to have the full list of [SSL::Options?&nbsp;

enes_afsin_al · Answer

SSL::cipher name
SSL::cipher version
SSL::cipher bits
These are the values that can be used for SSL::cipher.https://clouddocs.f5.com/api/irules/SSL__cipher.html
You can view all SSL:: commands from the link.https://clouddocs.f5.com/api/irules/SSL.html

Forum Discussion

Best way to pass http header by iRule containing Client TLS information

3 Replies

Recent Discussions

About custome Response Blocking Page

Office Online Server with SharePoint 2016

health monitor source IP address

How to target only webview rendering with CSS?

ltm policy asm_auto_l7_policy

Related Content

Help deleting header name that contains curly braces

External Monitor Information and Templates

Run Advanced Containers like OPSWAT Content Scrubbing Directly On F5 Distributed Cloud Nodes

Security headers

Find CVE information on AskF5