Forum Discussion

Nimbostratus

Jun 21, 2018

STARTTLS Proxy

Hi. I'm trying to setup a TLSv1.0 -> TLSv1.2 proxy for STARTTLS SMTP traffic. We need to disable TLSv1.0 and TLSv1.1, on STARTTLS sessions, for compliance reasons on our mail server. Another requ...

Cirrostratus

Jun 21, 2018

try

 when CLIENT_ACCEPTED {

 SSL::disable
 TCP::collect 3
}

when CLIENT_DATA {

    if { [TCP::payload length] >= 3 } {
          binary scan [TCP::payload 3] H* hex
          log local0. "Payload in HEX: $hex"

          switch $hex {

            "160301" {
        SSL::profile Legacy_Mail
                SSL::enable
             } 
        default {
                SSL::enable
            }           
    }
    }

        TCP::release

}

Forum Discussion

STARTTLS Proxy

Recent Discussions

Citrix XenServer Big-IP Upgrade help

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

BWC iRule

Can iRule be used to perform exception of IPI category based on Geolocation

help irules for compatibilty

Related Content

STARTTLS Server SMTP with cleartext and STARTTLS client support

LDAP StartTLS Extension to LDAPS Proxy

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

Integrating SSL Orchestrator with CheckPoint Firewall VM-Explicit Proxy

SSL PROXY