Forum Discussion

Nimbostratus

Feb 24, 2019

how to prioritize cipher suites

I am running version LTM BIGIP 12.1.3.5 and confused as to how to prioritize cipher suites. I am using this cipher string on some client and server side ssl profiles. DEFAULT:@STRENGTH:!3DES:!EX...

Altostratus

Feb 24, 2019

Yes. Please refer below article:

https://devcentral.f5.com/articles/ssl-profiles-part-4-cipher-suites

“!” – these ciphers are permanently deleted from the list and cannot reappear in the list even if explicitly stated.

“-“ - these ciphers are deleted from the list but can be re-added by later options.

“+” – these ciphers are moved to the end of the list.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

how to prioritize cipher suites

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Unable to Forward APM and AFM Logs to AWS CloudWatch Using Telemetry Streaming

Managing iRules configuration

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

[ASM] - How to disable the SQL injection attack signatures

Illigal Parameter addition as custom signature set wanted to Unblock

Related Content

Cipher Suite Practices and Pitfalls

Disabling Specific Weak Cipher Suites

Breaking Down the Quantum Challenge: TLS Cipher Suite Vulnerabilities and FIPS Post-Quantum Standards Explained

Cipher Suites Supported (12.1.5.3)

SSL Profiles Part 4: Cipher Suites

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS