For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

sysadmin_209494's avatar
sysadmin_209494
Icon for Nimbostratus rankNimbostratus
Jun 24, 2016

F5 LTM 11.6 with IIS 6

We are currently running an application that is in IIS6/Windows 2003 R2 SP2. The SSL cert that resides on the app is SHA1 and we'll need to renew it in 2 months to SHA2. From what I've researched i...
application delivery
iis
LTM
Vijay_E's avatar
Vijay_E
Icon for Cirrus rankCirrus
Jun 24, 2016

There should not be any problems from a function of F5 perspective. I have run into issues where the new code version on the F5 provides increased security by not using some of the older ciphers but clients still use old browsers that are not compatible with newer ciphers resulting in broken application.

 

I would recommend checking the following:

 

  1. Any specific client SSL cipher requirements ?

     

  2. For 11.6 code version, understand what "DEFAULT" cipher suite indicates and make sure it meets business requirements. See: https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13156.html