Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Best way to pass http header by iRule containing Client TLS information

Go to solution
Moinul_Rony
Altostratus
Altostratus

‎17-Apr-2023 18:41

Hi All, 

We are planning to identify TLS connection information from clients. ie: TLS version, CIPHER suits

How can we trap and pass through this client information via HTTP header so application team can analyse.

Thanks.

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
Enes_Afsin_Al
MVP
MVP

‎17-Apr-2023 19:07

Hi Moinul_Rony,

when HTTP_REQUEST {
	HTTP::header insert X-Forwarded-TLSVersion [SSL::cipher version]
	HTTP::header insert X-Forwarded-CipherName [SSL::cipher name]
	HTTP::header insert X-Forwarded-CipherBits [SSL::cipher bits]
}

 

View solution in original post

3 REPLIES 3

Go to solution
Enes_Afsin_Al
MVP
MVP

‎17-Apr-2023 19:07

Hi Moinul_Rony,

when HTTP_REQUEST {
	HTTP::header insert X-Forwarded-TLSVersion [SSL::cipher version]
	HTTP::header insert X-Forwarded-CipherName [SSL::cipher name]
	HTTP::header insert X-Forwarded-CipherBits [SSL::cipher bits]
}

 

Go to solution
Moinul_Rony
Altostratus
Altostratus
In response to Enes_Afsin_Al

‎17-Apr-2023 19:12

Thansk @Enes_Afsin_Al , 

Do you happen to have the full list of [SSL::Options? 

0 Kudos

Go to solution
Enes_Afsin_Al
MVP
MVP
In response to Moinul_Rony

‎17-Apr-2023 19:19 

SSL::cipher name
SSL::cipher version
SSL::cipher bits

These are the values that can be used for SSL::cipher.
https://clouddocs.f5.com/api/irules/SSL__cipher.html

You can view all SSL:: commands from the link.
https://clouddocs.f5.com/api/irules/SSL.html

0 Kudos
Copyright © 2023 Khoros, LLC