Forum Discussion

Cirrostratus

Aug 10, 2010

Specifying Ciphers in Client SSL Profiles

We just encountered a situation where (we believe) upgrading to 10.2.0 broke SSL connections for particular clients. According to the 10.2 release notes, MD5 ciphers were taken out of the default SSL ...

config

design

George_Watkins_

Historic F5 Account

Aug 10, 2010

Hi SMP,

RC4-MD5 is still part of the default cipher list in version 10.2: http://support.f5.com/kb/en-us/solutions/public/10000/200/sol10262.html. I think what you may be missing is the DES-CBC-SHA cipher. Here is a solution on how to add it to the SSL profile in v10.2: http://support.f5.com/kb/en-us/solutions/public/11000/600/sol11624.html.

Hope that helps,

George

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Specifying Ciphers in Client SSL Profiles

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

In F5 APM, how to include multiple DNS suffix?

Issue while migrating config from 4000s to r4600

Username is not filled in EdgeClient in the Modern customization

Cert Bundle Manager

Question regarding F5 Viprion Configuration Migration to VE.

Related Content

SSL Profiles Part 4: Cipher Suites

Capture Virtual Server Clientssl Profile & Ciphers Mapping - Bash

Cipher Suite Practices and Pitfalls

Three Ways to Specify Multiple Ports on a Virtual Server

Python script to print report of VIPs, corresponding profiles, SSL profile cipher strings and full cipher list

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS