Forum Discussion

Nimbostratus

Apr 07, 2014

OpenSSL and Heart Bleed Vuln

Get the latest updates on how F5 mitigates Heartbleed Hi Team, I know this question is eventually going to be asked - I may as well do it. With the news today about the Heartblee...

Cirrostratus

Apr 08, 2014

Whether OpenSSL is used or not will depend on the cipher string in your SSL profiles. If you're using the DEFAULT or NATIVE strings or something else that only uses native ciphers then OpenSSL is NOT used and the Cavium offload card (and related proprietary SSL/TLS software) is. If you're using something else (a compat cipher) then OpenSSL is. ~~A cipher string specifying any compat cipher, even if the rest are native, will result in OpenSSL being used.~~ <

Find the definitive list here and modify your profiles accordingly: http://support.f5.com/kb/en-us/solutions/public/13000/100/sol13163.html.

Also remember that you'll get much better performance if you only use native ciphers.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

OpenSSL and Heart Bleed Vuln

Recent Discussions

Management IP F5 cant be accessed

ASD

Big-IP VE edition for MacBook M4 Chip

301 redirect and waf policy log problem

Background Tasks

Related Content

Building an OpenSSL Certificate Authority - Creating Your Root Certificate

Building an OpenSSL Certificate Authority - Configuring CRL and OCSP

Building an OpenSSL Certificate Authority - Creating ECC Certificates

OpenSSL CVE-2022-3786 and CVE-2022-3602 or "The Critical that wasn't"

Building an OpenSSL Certificate Authority - Creating Your Intermediary Certificate

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS