CVE-2014-3566: Removing SSLv3 from BIG-IP

The POODLE (CVE-214-03566) vulnerability can force a client to negotiate SSLv3 instead of TLSv1.x ciphers. Then a BEAST-like attack can be conducted against SSLv3 to obtain information from the encry...
Updated Mar 18, 2022
Version 2.0
security
jba3126's avatar
jba3126
Icon for Cirrus rankCirrus
Oct 16, 2014
@JCMATTOS to view your protocol connection counts globally run: Below pulls out the SSL/TLS/DTLS metrics tmsh show ltm profile client-ssl global | egrep "Version|TLS" Below pulls out the Profile and SSL/TLS/DTLS metrics: tmsh show ltm profile client-ssl all | egrep "Ltm|Version|TLS" Also to reset Client SSL metrics and gather in real time run: tmsh reset-stats ltm profile client-ssl The re-run the above commands