SSL Profiles Part 4: Cipher Suites

Introduction This is part 4 in a series of articles covering the BIG-IP LTM SSL profiles. SSL Overview and Handshake SSL Certificates Certificate Chain Implementation Cipher Suites SSL ...
Updated Mar 25, 2023
Version 2.0
LTM
security
series-the-ssl-profile
ssl
tech tip
JRahm's avatar
Icon for Admin rankAdmin
Christ Follower, Husband, Father, Technologist. I love community and I especially love THIS community. My background is networking, but I've dabbled in all the F5 iStuff, I'm a recovering Perl guy, and am very much a python enthusiast. Learning alongside all of you in this accelerating industry toward modern apps and architectures.
View Profile
JRahm's avatar
Icon for Admin rankAdmin
Christ Follower, Husband, Father, Technologist. I love community and I especially love THIS community. My background is networking, but I've dabbled in all the F5 iStuff, I'm a recovering Perl guy, and am very much a python enthusiast. Learning alongside all of you in this accelerating industry toward modern apps and architectures.
View Profile
Sam_Novak's avatar
Sam_Novak
Icon for Altostratus rankAltostratus
Aug 19, 2016

I personally like to use

!DHE:ECDHE_ECDSA+AES-GCM:ECDHE+AES-GCM:ECDHE_ECDSA:ECDHE:DEFAULT

for my client SSL profiles. It gives me pretty high rankings in the SSL security scanners 🙂