Forum Discussion

Nimbostratus

Dec 07, 2017

Disabling DHE

In order to get an A on SSL Labs, I believe I need to disable DHE and prioritize forward secrecy. I've found that the cipher "ECDHE:DEFAULT:!DHE:!3DES" seems to do the trick, but one thing I'm having trouble find out:

What browsers will this affect negatively?

Thanks!

1 Reply

Samir_Jha_52506
Noctilucent
Dec 09, 2017
So far we have observed only on
Window-XP
browser, which was having issue. Now Windows XP is outdated OS.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Disabling DHE

1 Reply

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

NGINX event logs send to F5 Data Collection Device and analysis from BIG-IQ it possible or not?

Cannot ping external interface

Dump all host running services during APM logon

Failed to execute iptable cmd: ," CMD="iptables -A SSH_ALLOW_RULES error

HA Failover between two Datacenters

Related Content

LogJams, DHE Parameters, and Other Obstacles to TLS Excellence

Disabling Weak Ciphers

Disable below cipher

Disabling signature for a URL

Disabling Specific Weak Cipher Suites

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS