this is my test.
[root@orchid:Active] config b version|grep -iA 1 version
BIG-IP Version 10.2.1 511.0
Hotfix HF3 Edition
[root@orchid:Active] config b virtual bar list
virtual bar {
snat automap
pool foo
destination 172.28.17.88:https
ip protocol tcp
rules myrule
profiles {
myclientssl {
clientside
}
tcp {}
}
}
[root@orchid:Active] config b profile myclientssl list
profile clientssl myclientssl {
defaults from clientssl
renegotiate enable
}
[root@orchid:Active] config b rule myrule list
rule myrule {
when CLIENT_ACCEPTED {
set sslhandshakecount 0
}
when CLIENTSSL_HANDSHAKE priority 100 {
incr sslhandshakecount
if { $sslhandshakecount != 1 } {
log "\[VS [virtual] client [IP::client_addr]:[TCP::client_port]\]: TLS/SSL renegotiation occurred, dropping connection"
TCP::close
}
}
}
/var/log/ltm
Jun 9 06:36:14 local/tmm info tmm[5201]: 01220002:6: Rule myrule : [VS bar client 172.28.17.50:55916]: TLS/SSL renegotiation occurred, dropping connection