Malwark_334365
Sep 22, 2017Nimbostratus
iRule assistance - Block SSL/TLS unless client already has an existing session
Hi all, very new to F5. I kind of inherited it...
What I'm trying to accomplish When an SSL/TLS request is initiated (maybe use CLIENTSSLL_CLIENTHELLO) see if the client has an existing session if yes allow the SSL/TLS connection. If not deny the connection.
Currently there is a HTTP_REQUEST redirect for our remote apps to the F5 login page which works fine and creates the session, but at present I can create the SSL connection and bypass the F5 because the request isn't HTTP/S but does start out with a SSL/TLS handshake