Forum Discussion

Cirrus

Sep 12, 2017

Cipher configuration

Hello, I am trying to configure SSL client Profile version 12.1.2 including the next ciphers: ECDHE_RSA_WITH_AES_128_CBC_SHA256 ECDHE_RSA_WITH_AES_256_CBC_SHA384 However I can find onl...

application delivery

LTM

Kevin_K_51432

Historic F5 Account

Sep 12, 2017

Greetings, It looks to me like the CBC is implied. After looking the cipher up online and doing a quick connection test, CBC was listed in the cipher suite. From my test session capture:

            Session ID Length: 32
            Session ID: 32e83402862ca8e61ab05c0bee75506daf4782b2fa83fe56...
            Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)
            Compression Method: null (0)

Using:

tmm --clientciphers DEFAULT | grep -i ecdh | grep -i sha384
34: 49192  ECDHE-RSA-AES256-SHA384          256  TLS1.2  Native  AES       SHA384  ECDHE_RSA

You could test on your end just to be sure 😃

Kevin

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Cipher configuration

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

JSON Web Key Set Endpoint

Related Content

Cipher Suite Practices and Pitfalls

Future-Proofing Your Network: Enabling Quantum Ciphers on F5 BIG-IP TMOS 17.5.1

LTM Cipher rule

Disable below cipher

Breaking Down the Quantum Challenge: TLS Cipher Suite Vulnerabilities and FIPS Post-Quantum Standards Explained

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS