Cipher Suite Practices and Pitfalls
Cipher Suite Practices and Pitfalls
It seems like every time you turn around there is a new vulnerability to deal with, and some of them, such as Sweet32, have required altering cipher configurati...
Updated Jun 06, 2023
Version 3.0
LaszloLenard
Nimbostratus
NimbostratusI would like to ask the obvious: lets say we have both custom cipher settings and options enabled, like
ltm profile client-ssl test { app-service none cert default.crt cert-key-chain { default { cert default.crt key default.key } } chain none ciphers DEFAULT defaults-from exampleprofile true key default.key passphrase none options { dont-insert-empty-fragments no-tlsv1.3 no-dtlsv1.2 } }
How do I turn these OFF in CLI? In GUI, it's simple, just uncheck the custom checkbox and save. What is the equivalent in CLI?
Goal is to use the defaults-from profile's settings, so in this example like this:
ltm profile client-ssl test { app-service none cert default.crt cert-key-chain { default { cert default.crt key default.key } } defaults-from exampleprofile true key default.key passphrase none }