Forum Discussion
smp_86112
Apr 28, 2014Cirrostratus
Server SSL Profile ciphers
I'm using the following Ciphers string in a server SSL profile on my 11.4.1HF3 LTM:
DEFAULT:-TLSv1_1:-TLSv1_2
The resulting ciphers list is this:
Active:Changes Pending] ~ tmm --serve...
nitass
Employee
what makes the LTM decide to "decide" to use TLS on the serverside of the connection? Is that because the client on the clientside requested to use TLS (which it does), and it is required to maintain the same protocol on both sides?
i understand ltm uses the highest version first. i do not think maintaining the same protocol version is needed.
smp_86112
Apr 28, 2014Cirrostratus
> i understand ltm uses the highest version first
Intuitively this makes sense, but that implies some sort of defined order. And so I would expect the output of the `tmm --serverciphers` command to display the list in that priority, but it doesn't. Perhaps I expect too much.
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects