For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Bubbagump_12531's avatar
Bubbagump_12531
Icon for Nimbostratus rankNimbostratus
Sep 21, 2015

SSL Handshake failed

We noticed that we have a lot more SSLv3 traffic than we would expect. We want to phase out SSLv3 and we're looking at the SSLClient profile metrics and found ~12% of our users are on SSLv3 which is ...
application delivery
LTM
Bubbagump_12531's avatar
Bubbagump_12531
Icon for Nimbostratus rankNimbostratus
Sep 22, 2015

I have been through that article several times and it isn't much help. From what I can tell in my TCPdumps is that the Client Hello comes in, the Server Hello goes out, and immediately afterwards a RST ACK comes from the client. The handshakes errors may indeed be a red herring.

 

Again, the issue I am chasing is how in the world 10% of our traffic is still SSLv3 when our user-agent logs would lead us to believe our customers should be able to use TLS. So the question is, why are they negotiating SSLv3 and why does this seem to be limited to Linux clients?