Example

AuthTrans fn="match-browser"
          browser="*[Bb]roken*"
          ssl-unclean-shutdown="true"
          keep-alive="disabled"
          http-downgrade="1.0"

If a browser's User-Agent header contains the string Broken or broken, the above AuthTrans directive instructs the server to do the following:

• Not send the SSL3 and TLS close_notify packet

• Not honor requests for HTTP Keep-Alive

• Use the HTTP/1.0 protocol rather than HTTP/1.1

For more information on the variables used in this example, such as ssl-unclean-shutdown, see set-variable.