Forum Discussion

jomedusa's avatar
jomedusa
Icon for Altostratus rankAltostratus
Jan 14, 2021
Solved

iRule to email when TLS version is chosen

We are working to remove all TLS 1.0 and 1.1 connections to our VIP's. I can still see a small amount of connections and would like to trigger an email with the VIP and client ip address. I have co...
  • Karthick1's avatar
    Jan 14, 2021

    Dear , 

     

    Please check the below irule and user alert configuration to send email. 

    Below irule is to log the Client TLS Version : 

    Irule name : TLS_ver_email_irule

     

    when CLIENTSSL_HANDSHAKE {

      log local0.info " VIP -[IP::local_addr] client_connected_ver [SSL::cipher version]"

    }

     

     

    Edit the user alert configuration “/config/”  to send the matched logs to email. 

     

    alert TLS "Rule /Common/TLS_ver_email_irule <CLIENTSSL_HANDSHAKE>: (.*) TLSv1.1" {

    email toaddress=" kkk@abc.com"

      fromaddress="@abc.com"

    body="client connected using TLSv1.1"

    }

     

     

    Note: this match is based on irule name as well ,so be attention while creating the alerts in user configuration file, repeat the alert configuration for tslv1.0 

     

     

    Regards, 

    Karthick Yokesh K