TLS Poodle and RC4 vulnerability : default:!SSLv3:!RC4-SHA
We are running F5 LTM version 11.4.1 hostfix 4 Recently we disabled the RC4 weak CIPHER to remove the Minimal warning from our scan. But due to the recent arrival of Poodle TLS vulnarability we had to introduce !SSLv3:RC4-SHA which brought back the Minimal warning for having RC4 in the acceptable CIPHER. How can we over come this? Removing Poodle TLS padding vulnerability returns RC4 warning
ORACLE AGILE PLM logging out issue
Dear team, We have Agile and PLM setup for SSO and NON SSO users. SSO is listening on Port 80 reaching the backend server port on 7777 (which is actually a file manager) However, for NON SSO, the listening port is 7001 and the backend server port is 7011. We have cookie persistence enabled with Always send cookie enabled keeping rest of them as same. Problem: We are able to log in to the environment and attach the file then upload it. However, when the file is transferred or uploaded its coming back to original screen. Which is an application page. We are not sure where exactly its happening and would highly appreciate if anyone can help.
Tertiary F5 at DR Facility: Only Come Active with Admin Intervention
I am turning up an LTM cluster in data center A, and we have OTV to make our address space available in the DR site. I need to bring up an LTM cluster in the DR facility, but I don't want it to ever go active unless an administrator forces it to become active. What is the best way to accomplish this HA behavior?
Connection mirroring with more than 2 devices
Hello, I have a question regarding DSC. I would like to know if configuration with sync-failover device group consisting of for example 3 devices is able to gradually mirror connections. So if I have mirroring between active device and next device, when active goes offline, then first device becomes active and third becomes next device and connection is mirrored between them? I would love to check this in lab, unfortunately I have only 2 4200 devices... Regards, Piotr Bratkowski
ScaleN monitoring with SNMP?
When using ScaleN to have Virtual Servers active across multiple LTM VEs, is there a way to determine which LTM is active/passive for individual traffic-groups via SNMP monitoring? There does not appear to be MIB libraries in 13.1 that identify this data. Did I miss it? Thanks,
High PAT and NAT and Total no. of SNAT pool or IP
Hi Everyone, I am seeking a quick reply from the experts over the below points. What is the maximum no. of SNAT Pool we can create on the F5 box. What is the maximum no. of IP addresses we can keep in the SNAT pool. What is the maximum NAT and PAT done by F5 box. Regards,
