vvskaladhar_488
Jun 19, 2018Nimbostratus
irule modification help and new irule for allow specific ips only
Hello All,
Can you please let me know if we can have an irule to allow only selected ip ranges to access TLSV1.0 and V1.1 on the F5 VIP ? Also currently i am using below irule to find out the TLS traffic hitting to virtual server and i wanted to add uri informaiton also to be logged in below irule. please let me know what is the addition i need to add for this irule.
when CLIENTSSL_CLIENTHELLO { set virtual_server [LB::server] set userip [IP::client_addr] set SSL_version [SSL::cipher name] set SSL_PROTOCOL [SSL::cipher version]
if {$SSL_PROTOCOL == "TLSv1"} {
log local0. "Warning: $userip - $SSL_version - $SSL_PROTOCOL - $virtual_server"
}
}