Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Random Handshake failed

rosarra
Altocumulus
Altocumulus

‎13-Jun-2022 08:47

Hello,

I know this problem has already been addressed in other posts but I don't find a solution to my problem. In a configuration with a VS running ssl decryption everything works correctly but sometimes in random mode and with increasing frequency depending on the amount of traffic I see failed handshakes coming in. The source addresses are part of an AWS CDN and randomly return this type of error while normally they seem to work correctly. I therefore exclude a certificate problem because otherwise it would not work at all. Any ideas where I can look for the cause?

tmm3[11083]: 01260013:6: SSL Handshake failed for TCP 70.132.17.36:31720 -> 10.xxx.xx.xxx:443

Labels:
0 Kudos
3 REPLIES 3

neeeewbie
MVP
MVP

‎16-Jun-2022 19:12

I guess this problem relate to cipher suite 

some device tried to ssl handshake with not cipher supported by F5 

0 Kudos

rosarra
Altocumulus
Altocumulus
In response to neeeewbie

‎16-Jun-2022 22:45

Unfortunately, I think it is more complicated. I did a ssldump of the correct and failed connections.
It seems that at some point the connection is reset by the source and this is interpreted by F5 as Handshake failed. Probably because it happens during the certificate exchange phase. Is this possible?

See the ssldump here attached.

 

Preview file
22 KB

neeeewbie
MVP
MVP

‎21-Jun-2022 00:16

you can see "cipherSuite Unknown value 0x9d" 

could you change cipher list to "all" in ssl profile (client and server )?

0 Kudos
Copyright © 2023 Khoros, LLC