Forum Discussion
- Ashwin_Venkat_1Historic F5 Account
Hello Aditya,
You should be able to use the 'serverssl-insecure-compatible' SSL profile for any of the services, regardless of whether it's a standard port or not. The difference between 'serverssl-insecure-compatible', 'serverssl' or any of the other default/base profiles we have is the settings within the profiles, particularly the cipher string. You can build custom profiles using 'serverssl-insecure-compatible' or 'serverssl' as the parent profile and have your own custom cipher string, certificate/key, client authentication (if applicable) settings etc as per your application/environment needs.
- igorzhukAltostratus
Yes
- Aditya_MehraCirrus
Thanks Ashwin,
So serverssl can also be used if the pool members are not using the standard ports, if we have the relevant ciphers added?
- Ashwin_VenkatEmployee
Hello Aditya,
You should be able to use the 'serverssl-insecure-compatible' SSL profile for any of the services, regardless of whether it's a standard port or not. The difference between 'serverssl-insecure-compatible', 'serverssl' or any of the other default/base profiles we have is the settings within the profiles, particularly the cipher string. You can build custom profiles using 'serverssl-insecure-compatible' or 'serverssl' as the parent profile and have your own custom cipher string, certificate/key, client authentication (if applicable) settings etc as per your application/environment needs.
- igorzhukAltostratus
Yes
- Aditya_MehraCirrus
Thanks Ashwin,
So serverssl can also be used if the pool members are not using the standard ports, if we have the relevant ciphers added?