Forum Discussion
changing DEFAULT ciphers v14.x
- Mar 11, 2019
If you are using a PerfomanceL4/FastL4 Virtual Server, the BIGIP is not communicating TLS with the back end servers. The BIGIP in this case would be passing TCP traffic through from the client directly to the server. The TLS handshake would not involve the BIGIP so any changes to cipher lists on the BIGIP would be irrelevant.
If you are using a PerfomanceL4/FastL4 Virtual Server, the BIGIP is not communicating TLS with the back end servers. The BIGIP in this case would be passing TCP traffic through from the client directly to the server. The TLS handshake would not involve the BIGIP so any changes to cipher lists on the BIGIP would be irrelevant.
Your statement about lack of ciphers in common. If that is an error you are getting on either the client or the server, then that is where the lack of common ciphers exists. Since the handshake is done from client to back-end server and doesn't involve the BIGIP, you will need to modify the ciphers available on either the client or the back-end server. If that is not the issue, the question is much more broad than the information you've provided.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com