Forum Discussion

Altostratus

Sep 18, 2019

SSL handshake fail after software upgrade from 12.1.2 to 13.1.1.5

we see lot many SSL handshake fail warnings in ltm logs for a cleint SSL enabled VIP traffic after software upgrade from 12.1.2 to 13.1.1.5,

Employee

Sep 18, 2019

Hi Mohan,

Does the client SSL profile use the "DEFAULT" cipher string? If it does then that may be the reason for the handshake failures. The default ciphers have changed between versions. For more information please take a look at the following article.

K13156: SSL ciphers used in the default SSL profiles (11.x - 13.x)

https://support.f5.com/csp/article/K13156

-Nathan F

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL handshake fail after software upgrade from 12.1.2 to 13.1.1.5

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

SSL Bridging and FQDN rewrite Policy

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Could not communicate with the system. Try to reload page.

F5 BIG IP laboratory license

F5 mssql health monitor failing

Related Content

European airport software attack and zero day ‘s are here

SSL Profiles Part 1: Handshakes

TCP Internals: 3-way Handshake and Sequence Numbers Explained

Software Upgrade

6. SYN Cookie: Hardware vs Software

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS