Forum Discussion
SSLDump
Hi,
Can any one explain me the the SSLdump below ?
- P_K
Altostratus
It looks like something wrong about clients key or client encryption settings. TCPDUMP might help!
Also check this article
ChangeCipherSpec (client)
During the client's ChangeCipherSpec phase, the client initializes the options that were negotiated by both parties. This phase marks the point when the parties change the secure channel parameters from using asymmetric (public key) to symmetric (shared key) encryption. A handshake failure during this phase may relate to SSL message corruption or issues with the SSL implementation itself. [Content copied from article]
- jaikumar_f5
Noctilucent
From what I could see, Version 3.1 means, its on Tls 1.1. So your client intiated handshake on tls1.1 and server (F5) also negotiates with the same. But its then failing in the changecipherspec. Definitely it hasn't gone to server-side connection yet. Its still on the client-side connection and failing. I would check on the clientssl profile ciphers and try troubleshooting.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com