Forum Discussion

Cirrus

Dec 12, 2017

serverssl-insecure-compatible for unsecure ports

Hi All, Is there an issue if we use serverssl-insecure-compatible for unsecure ports? Have a VIP with serverssl, pool members on 9093 port. Changed to serverssl-insecure-compatible and it works....

Historic F5 Account

Hello Aditya,

You should be able to use the 'serverssl-insecure-compatible' SSL profile for any of the services, regardless of whether it's a standard port or not. The difference between 'serverssl-insecure-compatible', 'serverssl' or any of the other default/base profiles we have is the settings within the profiles, particularly the cipher string. You can build custom profiles using 'serverssl-insecure-compatible' or 'serverssl' as the parent profile and have your own custom cipher string, certificate/key, client authentication (if applicable) settings etc as per your application/environment needs.

Aditya_Mehra

Cirrus

Dec 15, 2017

Thanks Ashwin,

So serverssl can also be used if the pool members are not using the standard ports, if we have the relevant ciphers added?

Thanks, Aditya

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

serverssl-insecure-compatible for unsecure ports

Recent Discussions

Background Tasks

APM with EntraID as idP / request signed

Should config via cli rather than gui?

APM Modern Customization - modify Header in user-common.js and form in user-logon.js

Which process is consuming higher CPU

Related Content

serverssl and serverssl-insecure-compatible

Response port masking

Three Ways to Specify Multiple Ports on a Virtual Server

Multiple Port Load Balancing

VIP needed for many UDP ports

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS