Forum Discussion
Kalpesh_48932
Feb 13, 2012Nimbostratus
TLS portocol in VIP
Can anyone tell me how to achieve this...? I have to use TLS protocol in VIP ..current one is TCP..
- nitassEmployeedo you mean you want to use only TLSv1? if so, have you tried to configure ciphers in clientssl profile to "TLSv1"?
[root@ve1023:Active] config tmm --clientcipher 'TLSv1' ID SUITE BITS PROT METHOD CIPHER MAC KEYX 0: 4 RC4-MD5 128 TLS1 Native RC4 MD5 RSA 1: 5 RC4-SHA 128 TLS1 Native RC4 SHA RSA 2: 47 AES128-SHA 128 TLS1 Native AES SHA RSA 3: 53 AES256-SHA 256 TLS1 Native AES SHA RSA 4: 10 DES-CBC3-SHA 192 TLS1 Native DES SHA RSA 5: 9 DES-CBC-SHA 64 TLS1 Native DES SHA RSA 6: 96 EXP1024-RC4-MD5 56 TLS1 Native RC4 MD5 RSA 7: 100 EXP1024-RC4-SHA 56 TLS1 Native RC4 SHA RSA 8: 98 EXP1024-DES-CBC-SHA 56 TLS1 Native DES SHA RSA 9: 3 EXP-RC4-MD5 40 TLS1 Native RC4 MD5 RSA 10: 8 EXP-DES-CBC-SHA 40 TLS1 Native DES SHA RSA
- Kalpesh_48932NimbostratusHow to configure on web console...
- Kalpesh_48932NimbostratusI have not tried any config..I do not know..how to configureTLS for VIP..instead of TCP...can you tell me..how to configure in web console..which option to select under profile tab...?
- Beinhard_8950NimbostratusTo implement transport layer security you will use SSL Client/server profile.
So in that profile you need to change the cipher from default to something that Hoolio showed in his post and also some other parameters such as certificates...
TCP is only the protocol and that will of course also be even if you run TLS.
Below a Cipher Example:
'ALL:MEDIUM:HIGH:!LOW:!EXPORT:!SSLv2:!SSLv3:!ADH:!DH:!EDH:!Compat'
/Beinhard
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects