Forum Discussion

nickt9999_11997

Nimbostratus

Oct 21, 2014

SSLv3 iRule reply with nice error

Hi All, I am trying to write an iRule that will return a nice error message to the user if they attempt to use the SSLv3 protocol, however I don't know how to do the message part. Can some please ...

Nimbostratus

Oct 21, 2014

SSL is a lower level protocol, so the "nice error message" which you are referring to has to be at the application layer and it will depend on the application protocl in question.

If (most typically) your application protocol is http then you could just use the CLIENTSSL_HANDSHAKE event to flag that the protocol version negotiated was SSLv3.

Then in the HTTP_REQUEST event on the 1st incoming request you can dish out or redirect (to) a nice error message page.

Note that this means that the SSLv3 should be enabled in your profile to let the handshake succeed.

Forum Discussion

SSLv3 iRule reply with nice error

Recent Discussions

Rundeck ansible F5 errors

What is the meaning is 52% block in WAF

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

iRULE regsub error

owa iapp assign irule

Irule Trigger two times

Is !SSLv3 the same as No SSLv3 ?

Enabling SSLv3