For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Andrea_Colombo_'s avatar
Andrea_Colombo_
Icon for Nimbostratus rankNimbostratus
Oct 24, 2017

Adding Peer device issue

Hi Guys,   I have a problem with my customer. We are working in Test Plant, where we would replace 2 F5 Viprion 4400 (version 11.4.1) with an F5 i2600 (version 12.1.2). I'm telling you what we wou...
application delivery
iControl
LTM
  • Andrea_Colombo_'s avatar
    Andrea_Colombo_
    Icon for Nimbostratus rankNimbostratus
    Oct 25, 2017

    Hello Kevin, thank you for your response. We tried the solution on K13405, but the problem is the same: iControl connection to 172.16.4.242 failed

     

    Any idea?

     

    BR

     

    Andrea

     

  • Kevin_K_51432's avatar
    Kevin_K_51432
    Historic F5 Account
    Oct 25, 2017

    Hi Andrea,

    I've not encountered this issue on any of my BIG-IPs. It looks like the default setting is: 
    tmsh list sys httpd ssl-protocol
sys httpd {
    ssl-protocol "all -SSLv2 -SSLv3"
}

    Do you have the ability to set this on both devices and test? 

    tmsh
modify sys httpd ssl-protocol "all -SSLv2 -SSLv3"
save sys config
load sys config
restart sys service httpd

    I know you intend to use stronger ciphers only, but it appears this is only possible in v13.0.0 per the bug mentioned above.

    Thanks!

    Kevin