Forum Discussion
Adding Peer device issue
Greetings,
That seems resemble the following:
K54511423: The system includes insecure ciphers when a device adds another device to the device trust
https://support.f5.com/csp/article/K54511423
Did you happen to use this article to modify the HTTP cipher strength?
K13405: Restricting Configuration utility access to clients using high-encryption SSL ciphers (11.x)
https://support.f5.com/csp/article/K13405
Kevin
- Andrea_Colombo_Oct 25, 2017
Nimbostratus
Hello Kevin, thank you for your response. We tried the solution on K13405, but the problem is the same: iControl connection to 172.16.4.242 failed
Any idea?
BR
Andrea
- Kevin_K_51432Oct 25, 2017Historic F5 Account
Hi Andrea,
I've not encountered this issue on any of my BIG-IPs. It looks like the default setting is:tmsh list sys httpd ssl-protocol sys httpd { ssl-protocol "all -SSLv2 -SSLv3" }
Do you have the ability to set this on both devices and test?
tmsh modify sys httpd ssl-protocol "all -SSLv2 -SSLv3" save sys config load sys config restart sys service httpd
I know you intend to use stronger ciphers only, but it appears this is only possible in v13.0.0 per the bug mentioned above.
Thanks!
Kevin
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com