For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

ingard's avatar
ingard
Icon for Nimbostratus rankNimbostratus
Sep 18, 2014

Why am I seeing so many "Partial" SSL Hardware Accelerated transactions?

My ssl profile uses ciphers "default" show /ltm profile client-ssl myprofile gives this: (i've just recently reset the stats)   SSL Hardware Acceleration Full ...
application delivery
hardware
LTM
performance
profile
ssl
What_Lies_Bene1's avatar
What_Lies_Bene1
Icon for Cirrostratus rankCirrostratus
Sep 19, 2014

I believe Partial relates to where a COMPAT cipher is negotiated and OpenSSL is used. Its partial because the handshake is always handled in hardware but the bulk crypto operations then move to OpenSSL if a COMPAT cipher is in use.

 

No clue about the None related output.

 

To have everything h/w accelerated, change your cipher string to NATIVE (or DEFAULT if you're on v11 I think) but do some research on what that might mean for your clients and what ciphers will be available. Start here with that: http://support.f5.com/kb/en-us/solutions/public/13000/100/sol13171.html