Forum Discussion
PeteW
Nimbostratus
NimbostratusAmending clientssl ciphers with TMSH
Guys,
Hopefully someone has already covered this one but I have the following clientssl profile
ltm profile client-ssl pw_clientssl {
cert pw.bigip.test.com.crt
ci...
PeteWNimbostratus
NimbostratusSorted :)
The only way I can seem to do this is to drop straight into TMOS and paste the code in from there.
E.g.
admin@pw-bigip(Active)(tmos)
admin@pw-bigip(Active)(tmos) list ltm profile client-ssl pw_clientssl
ltm profile client-ssl pw_clientssl {
cert pw.bigip.test.com.crt
ciphers -ALL:RC4:!SSLv2:!NULL:!ADH:!LOW:!EXP:+TLSv1:+SSLv3:HIGH:MEDIUM
defaults-from clientssl
key pw.bigip.test.com.key
}
admin@pw-bigip(Active)(tmos) modify ltm profile client-ssl pw_clientssl ciphers HIGH:MEDIUM:!SSLv2
admin@pw-bigip(Active)(tmos) list ltm profile client-ssl pw_clientssl
ltm profile client-ssl pw_clientssl {
cert pw.bigip.test.com.crt
ciphers HIGH:MEDIUM:!SSLv2
defaults-from clientssl
key pw.bigip.test.com.key
}
admin@pw-bigip(Active)(tmos) modify ltm profile client-ssl pw_clientssl ciphers -ALL:RC4:!SSLv2:!NULL:!ADH:!LOW:!EXP:+TLSv1:+SSLv3:HIGH:MEDIUM
admin@pw-bigip(Active)(tmos) list ltm profile client-ssl pw_clientssl
ltm profile client-ssl pw_clientssl {
cert pw.bigip.test.com.crt
ciphers -ALL:RC4:!SSLv2:!NULL:!ADH:!LOW:!EXP:+TLSv1:+SSLv3:HIGH:MEDIUM
defaults-from clientssl
key pw.bigip.test.com.key
}
admin@pw-bigip(Active)(tmos)
Result :)