For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Joeri_45317's avatar
Joeri_45317
Icon for Nimbostratus rankNimbostratus
Oct 09, 2013

SSL Client profile: can't activate SSLv2

We have an Exchange 2010 CAS setup, when we enable SSL offloading, some of our "legacy" clients can't use Outlook Anywhere anymore. We suspect the old clients can't agree on a cipher with the F5.  ...
cipher
deployment
security
ssl
ssl profile
Joeri_45317's avatar
Joeri_45317
Icon for Nimbostratus rankNimbostratus
Oct 09, 2013

Thanks for your reply

 

you don't want to activate SSLv2, is is insecure

 

Indeed, fortunatly its an "internal" setup and we are forced to give our "customers" some time to phase out the legacy clients. It's more urgent to get the SSL offloading working, because our clients are coming proxied or Nat'ted, it's getting impossibe to distribute the load

 

you have an option to disable SSLv2 (and others) if you need you can remove that option.

 

The option is not enabled, to make sure I have set "All Options Disabled". The SSL scan output of the vserver is still the same. No SSLv2 options.