Gathering detailed information for ssl errors in the event log

Solutions ID:    KB4674
Version:    1.0
Status:    Published
Published date:    10/05/2011

Problem Description

It can be useful to increase the verbosity of ssl errors in the proxy SG event log, since by default the proxy does not include URL, user agent and client details in the ssl error entries.


The following CPL code allows more info to be gathered, to help with identifying problematic website or clients for ssl troubleshooting:

Add these lines in local policy under Configuration -> Policy -> Policy Files -> Install Local File from "Text Editor":

<exception> action.ssl_log(yes)

define action ssl_log

log_message("SSL error or failure occurred at URL: $(url) with User-agent: $(request.header.User-Agent) from client-IP: $(c-ip)")


Rate this Page

Please take a moment to complete this form to help us better serve you.

Did this document help answer your question?
If you are finished providing feedback, please click the RATE CONTENT button. Otherwise, please add more detail in the following text box and then click RATE CONTENT.

Your response will be used to improve our document content.

Ask a Question