Forum Discussion

Nimbostratus

Mar 09, 2015

Adding a new crypto set to the SSL Client Profile

I would like to add the support for the following ciphers to a specific SSL Client Profile on the LTM. I believe that I need to enter it into Configuration\Advanced\Ciphers in the new client profile....

Nimbostratus

Mar 09, 2015

This would only allow me to search the ciphers currently set up. For example using tmm --clientciphers HIGH will give me a list of the more secure ones that are already available.

I am looking at adding clientciphers that are not defined yet, using something along the lines of the following KO: https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13171.html

My question is, can I add a clientcipher that isn't listed using the following: ECDHE:ECDSA:AES128:CBC:SHA256 (and what would be the difference if one used DEFAULT:ECDHE:ECDSA:AES128:CBC:SHA256, forgive if the answer is obvious.)

Thank you for your help

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)