Forum Discussion

Nimbostratus

Feb 06, 2015

Use different SSL cipher client and server side

Hi, Context: I have a back-end that doesn't support TLS V1.2 (BIGIP Version: 11.4 HF7) Objective: I would that the trafic between the client and the BIG-IP be encrypted using TLS 1.2 and be...

Cumulonimbus

Feb 06, 2015

you don't need to disable tls1.2 on the server side. If it doesn't support it, it won't negotiate it. I just tested with a server, I disabled tls1.2 on my apache server and then connected tls1.2 to the virtual server, and tls1.1 to the backend, using a profile that supported 1.2 on both sides. The 2 connections (client side and server side) are completely independent.

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)