Forum Discussion

Cirrostratus

Mar 17, 2017

TLS Version and SSLDUMP

Hi all, I am trying to figure out if server behind Big-IP is capable of doing TLS 1.2 Supposedly it should. I have taken a tcpdump of target traffic as below: tcpdump -vvv -s 0 -nni 0.0 -w /...

Cirrocumulus

Mar 17, 2017

alex100,

The TLS version can be retrieved from the Version line in client and server hellos. Version 3.3 means TLS 1.2. So looks like both client and server agreed upon TLS 1.2.

Version 3.0 is SSLv3, 3.1 is TLS1.0, 3.2 is TLS 1.1

Hope this helps,

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

TLS Version and SSLDUMP

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

Can F5 restrict the file types transferred via FTP?

SSO login for APM Profiles

LTM issue Openning new web browser tab

SFP Port LEDs Blinking Yellow

Kerberos Authentication Failing for Exchange 2016 Behind F5 Cloud WAF

Related Content

Troubleshooting TLS Problems With ssldump

Decrypting TLS traffic on BIG-IP

CLIENT_HELLO SSL TLS version insert

Load Balancing TCP TLS Encrypted Syslog Messages

Fingerprinting TLS Clients with JA4 on F5 BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS