Forum Discussion

Samir_Jha_52506's avatar
Samir_Jha_52506
Icon for Noctilucent rankNoctilucent
May 05, 2015

Block SSL V3 Traffic.

Hi Team,   When i did external scan of URL. I found my site is vulnerable with SSLV3. Can any one help me to block it.   This server may be vulnerable: SSLv3 is enabled -->This server uses SS...
application delivery
BIG-IP DNS
LTM
security
TMOS
nathe's avatar
nathe
Icon for Cirrocumulus rankCirrocumulus
May 05, 2015

Samir,

 

Couple of ways - this assumes you have a client ssl profile on the virtual server and you are terminating SSL at the bigip (even if you are re-encrypting to the pool members).

 

  1. Configure the Ciphers section. If it's currently DEFAULT then change to DEFAULT:!SSLv3
  2. Configure the client ssl Options List. You should see a "No SSLv3" item you can enable.

Hope this helps,

 

N