enable tls1.2 on management interface on F5 ltm running version 10.x
Hi Experts ,
Legacy F5 is having below image and we would like to enable tls1.2 for httpd for management interface so that we can access Web using new browsers.
Sys::Version
Main Package
Product BIG-IP
Version 10.2.4
Build 817.0
Edition Hotfix HF7
Date Mon May 20 15:08:56 PDT 2013
We are folllowing stpes mentioned in the "https://my.f5.com/manage/s/article/K40232071" , unfortunately this is for 11.x and above versions.
We are getting below error while changing the ssl to tls1.2.
(Active)(tmos)# modify /sys httpd ssl-ciphersuite 'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:!SSLv3:!TLSv1:!TLSv1.1'
01070920:3: Application error for confpp: Syntax OK
Error in cipher list
25658:error:140E6118:SSL routines:SSL_CIPHER_PROCESS_RULESTR:invalid command:ssl_ciph.c:836:
'ALL:!ADH:!EXPORT:!eNULL:!MD5:!DES:!SSLv2:!SSLv3:!TLSv1:!TLSv1.1' invalid.
*************************************************************
Apr 26 13:17:23 CEGP001.IN.com confpp[25610]: syntax check command FAILURE for unix_config_httpd returned: '256'
[ OK ]ing httpd: [ OK ]
your valuable suggestion helps us to fix GUI issues.
from the Browser we are getting ,
The connection for this site is not secure
10.70.89.37 uses an unsupported protocol.
ERR_SSL_VERSION_OR_CIPHER_MISMATCH