Forum Discussion

Nimbostratus

Apr 06, 2011

Avoid SSL Resume

Dear, I'm interested my clients can't resume https sessions. I would like to know how can I configure F5, SSL client profiles, so nobody can resume a https session. Thanks. ...

Cirrostratus

Apr 15, 2011

Hi Jon,

You can set the SSL cache size to 0 in the client SSL profile to prevent SSL session reuse:

sol10167: Overview of the Client SSL profile

http://support.f5.com/kb/en-us/solutions/public/10000/100/sol10167.html

sol6767: Overview of the BIG-IP SSL session cache profile settings

http://support.f5.com/kb/en-us/solutions/public/6000/700/sol6767.html

Aaron

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

Avoid SSL Resume

Recent Discussions

F5 looses the token for the first call

iRule - Url rewrite and header replace and pool selection not working

Switch ssl profile based on weak cipher detection via IRULE

full-proxy HTTP2

Decode ObjectSID from Base64-encode string

Related Content

Avoiding Common iRules Security Pitfalls

Avoid SSL Handshake When Pool is Unavailable

COVID-19 and Cyber Crime Awareness – Knowledge on How to Avoid

Integrating SSL Orchestrator with McAfee Web Gateway-Transparent Proxy

F5 LTM manual resume problem

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS