Forum Discussion

Nimbostratus

Nov 13, 2015

SSL handshake errors

Hi there, Recently put TMOS version 12 into production and see following SSL handshake errors, none of which existed in version 10.2.3: Nov 12 03:15:36 dc1lbc2p info tmm[11446]: 01260013:6:...

Employee

Nov 17, 2015

Great, so first step is to turn it off at the server. If you can't do that, try this simple iRule to remove it from responses:

when HTTP_RESPONSE {    
    if { [HTTP::header exists "Strict-Transport-Security" } {        
        HTTP::header remove "Strict-Transport-Security"
    }
}

If that does the trick, then you just need to wait that 500 seconds for the cache to timeout and then try again.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

SSL handshake errors

Recent Discussions

VIP needed for many UDP ports

Creating Policy using Terraform

Unable to get Internet in server using SWG forward Proxy.

ASM don't block attack XSS

AWAF ADD-ON MODULE

Related Content

HTTPS - Monitor SSL Handshake

SSL handshake failed

Avoid SSL Handshake When Pool is Unavailable

Restricting number of concurrent TLS handshakes using Max Active Handshakes on BIG-IP

BIG-IP Proxy SSL 12.1 Handshake Failure

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS