Last Modified: Jul 27, 2022
Affected Product(s):
BIG-IP SSLO
Fixed In:
17.0.0
Opened: Apr 23, 2021 Severity: 3-Major
SSL Orchestrator traffic summary log (in /var/log/apm) incorrectly identifies decryption-status as 'decrypted' when the TLS handshake is incomplete.
Traffic summary log in /var/log/apm incorrectly identifies decryption status.
-- SSL Orchestrator is licensed and provisioned. -- Per-request policy or security policy is defined and attached to Virtual server. -- Per-request policy log level is set to Info.
None
SSL Orchestrator traffic summary log now correctly identifies decryption-status as 'NA' when tls handshake is incomplete. Two new fields cleint & server tls-handshake-status also got added to indicate handshake status of each side.