Forum Discussion
f5mkuDefault
Sep 05, 2020Cirrus
Hi Samir, this is an HA, active, standby.
Now .12 is the active unit while .11 is the standby unit.
We are using version 12.1.3
What I dont understand is why on .12 the ltm is negotiating using tls1 while in .11 is tls1.2.
In .12 the pool is down while in .11 the pool is up.
I did openssl on both using the default cipher list on the health monitor profile and the ltm by right is not supposed to use tls1 as there is no tls1 in the list.
- Remove the https monitor from pool , save the config and add back same monitor in pool
- I did this already. The only fix is to define the port 443 instead of using * All Ports.
I'm sorry I am not able to do this at the moment.
- openssl s_client -connect x.x.x.x:443 -tls1_2
- openssl s_client -connect x.x.x.x:443 -tls1