Health monitor using https profile issue
Hi Experts, I have 1 issue that until now I still cannot find a definite answer after googling for a long time. I have an HA F5, active and standby unit. I created 1 VS and the pool health monitor uses https profile with default settings, see attached image for the health monitor settings. The results where. In active unit the pool is down, the health monitor it uses tlsv1 to communicate with the server causing a fatal error protocol version If I define the port 443 instead of using * All Ports, the pool comes up. In standby unit the pool is up. the health monitor it uses tls1.2 to communicate with the server and no issues. This is also using * All Ports and I do not have issue with this standby unit. See my tcpdump attached here as well. Now I do not understand why my active unit uses tls1 while standby unit uses tls1.2. I also understand the ciphers used are DEFAULT that is why the F5 tries to negotiate using tls1. But how come in standby unit it offers tls1.2? Please help to enlighten me. What is the best practice? Any answer is very much appreciated, thank you in advance.
