Forum Discussion
hooleylist
Apr 05, 2011Cirrostratus
Hi Manuel,
Per this Firefox article, https://wiki.mozilla.org/Security:RenegotiationControl, Mozilla has implemented something clever to try to force websites who want to do SSL renegotiation to support RFC5746 (which fixes the SSL renegotiation vulnerability described in CVE-2009-3555).
So I think the gist it is, until LTM supports RFC5746, FF4 clients will need to manually enable an option in the browser to allow connections to a virtual server which tries to initiate renegotiation. F5's ID for this issue is 223836. It is not currently fixed. If you'd like to escalate this I suggest opening a case with F5 Support and talk with your account manager.
Aaron