Forum Discussion

Nimbostratus

May 18, 2017

SSL profile DEFAULT ciphers LTM

Hello All, Using SSL profile with DEFAULT ciphers configured, I supposed that the F5 LTM should use stronger ciphers in priority ? Example : Client --> LB --> Back-end The SSL client profile is ...

Admin

May 18, 2017

Completely normal. The default ciphers and order change from version to version. I encourage people to specify their own cipher string so that

they have control over what's selected
a version upgrade doesn't accidentally remove a necessary cipher

John wrote an article on improving your security score a while back and I wrote one on manipulating your cipher list as well.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

SSL profile DEFAULT ciphers LTM

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

SSL Profiles Part 4: Cipher Suites

Capture Virtual Server Clientssl Profile & Ciphers Mapping - Bash

Cipher Suite Practices and Pitfalls

Python script to print report of VIPs, corresponding profiles, SSL profile cipher strings and full cipher list

Future-Proofing Your Network: Enabling Quantum Ciphers on F5 BIG-IP TMOS 17.5.1

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS