Forum Discussion

Cirrus

Sep 12, 2017

Cipher configuration

Hello, I am trying to configure SSL client Profile version 12.1.2 including the next ciphers: ECDHE_RSA_WITH_AES_128_CBC_SHA256 ECDHE_RSA_WITH_AES_256_CBC_SHA384 However I can find onl...

application delivery

LTM

Kevin_K_51432

Historic F5 Account

Sep 12, 2017

Greetings, It looks to me like the CBC is implied. After looking the cipher up online and doing a quick connection test, CBC was listed in the cipher suite. From my test session capture:

            Session ID Length: 32
            Session ID: 32e83402862ca8e61ab05c0bee75506daf4782b2fa83fe56...
            Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 (0xc028)
            Compression Method: null (0)

Using:

tmm --clientciphers DEFAULT | grep -i ecdh | grep -i sha384
34: 49192  ECDHE-RSA-AES256-SHA384          256  TLS1.2  Native  AES       SHA384  ECDHE_RSA

You could test on your end just to be sure 😃

Kevin

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Cipher configuration

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

How to Verify config before loading to F5

Logical Disk Full to Migrate rSeries

HSL - Local TimeZone - in syslog server

VIP control across data centers - how to ensure only 1 VIP is up at a time?

Related Content

Cipher Suite Practices and Pitfalls

Future-Proofing Your Network: Enabling Quantum Ciphers on F5 BIG-IP TMOS 17.5.1

Managing iRules configuration

LTM Cipher rule

Disable below cipher

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS