Forum Discussion

vvskaladhar_488's avatar
vvskaladhar_488
Icon for Nimbostratus rankNimbostratus
Oct 16, 2017

what would be the impact of disable DES and 3DES ciphers on the VIP and what level of testing can be done after Disable

HI All,

 

Can some one please help me understanding what would be the impact of disable DES and 3DES ciphers on VIP and what level of testing can be done to make sure it is not impacting production traffic.

 

application delivery
LTM
  • amintej's avatar
    amintej
    Icon for Cirrus rankCirrus
    Oct 16, 2017

    Hello, I recommend you check SSL profile statistics before turning off DES and 3DES. Go to the VS statistics and then choose the SSL profile statistics or use tmsh command:

     show ltm virtual name detail

    Check ciphers section: 

     Ltm::ClientSSL Profile:Ciphers

    If you don't have connections using those ciphers, you can disable without risk.