Allwyn_Mascaren
Dec 30, 2018Cirrus
Unable to decrypt using SSL::sessionsecret iRules command
Fellas,
I am using this irule:
when CLIENTSSL_HANDSHAKE {
if {[IP::addr [IP::client_addr] equals 172.22.200.178] } {
log local0. "========CLIENT SIDE==================="
log local0. "Client IP: [IP::client_addr]"
log local0. "TCP source port: [TCP::remote_port]"
log local0. "RSA Session-ID:[SSL::sessionid] Master-Key:[SSL::sessionsecret]"
log local0. "======================================"
log local0. " "
}
}
And the output I get is this:
: ========CLIENT SIDE===================
Dec 30 14:56:15 akm-bigip1 info tmm1[9611]: Rule /Common/SSL-Decrypt : Client IP: 172.22.200.178
Dec 30 14:56:15 akm-bigip1 info tmm1[9611]: Rule /Common/SSL-Decrypt : TCP source port: 57050
Dec 30 14:56:15 akm-bigip1 info tmm1[9611]: Rule /Common/SSL-Decrypt : RSA Session-ID: Master-Key:dccbfb5e3df9205cd6ddb76aba683c2f262dfbacb7b88afdd390e011902c940782d371f1acfb1c5267a1d4cdced5ada9
Why am I not getting the session id here?
Also I have followed the steps to disable cache by setting it to 0 and cipher is only AES+RSA.
What am I missing???