Forum Discussion

jayson27's avatar
jayson27
Icon for Altocumulus rankAltocumulus
Feb 20, 2024

Cipher Suite Issue for Old Server [2003, 2000]

Hi,

Need your expert advice.

In our current setup, our F5 devices are using version 12.1.2. We can't upgrade to a higher version because some Windows servers are still using old ciphers and during the upgrade way back 2019 there was cipher issue after upgrading to higher version.

Our plan is to upgrade to version 14 first. Can we include the default ciphers allowed on version 12 in the SSL profile configuration to minimize downtime? Or do you have a better approach? 

Can we configure the cipher suite allowed on version 12 prior to upgrade on version 14?

 

 

1 Reply

  • While upgrading the TMOS version changes default active ciphers, it is always possible to explicitly specify the cipher string to use. And you can do it before upgrade.