SSLv3, TLS1.0 and cipherstrings...
Running v11.6.1. I've tried searching for an answer to this question, which surely must have been asked before, but too many different topics use the same search criteria and I find myself getting into subjects that I really don't need. I've got an client-ssl profile with a cipherstring that contains !SSLv3. Does this mean that clients sending an SSLv3 record layer message will be rejected, or those sending an SSLv3 handshake layer message within a TLS record will be rejected, or both, or neither?218Views0likes2CommentsSSLv3 to TLS 1.x Proxy
Hoping to find out if this is possible. We have a server that is only SSLv3 compatible and due to compliance reasons we must use TLS 1.x. Is it possible to use the F5 as a proxy in the situation to terminate the connection from the client and BIG-IP to connect with TLS 1.x? What's the best path? BIG-IP is 10.0.1. Thanks internal server SSLv3---> BIG-IP as proxy ---TLS 1.x---> Firewall ----> external service307Views0likes3CommentsLTM 11.5 L4 VS and SSL Persistence terminates IE8 Connections
After upgrading to 11.5 (from 10.x), a Website stopped working with IE8 - FireFox 24.1.1 was working well. (actually in most of the cases just one HTTP Request passed in a 'keep-alive' connection). While troubleshooting I realized, that this issue is caused by the SSL Persistence Profile which was attached to the Virtual Server. The VS is configured as L4 Service (no SSL Termination). I'm aware, that Version 11.5 does not make use of SSLv3. So I think this is somehow related. Anybody else who see the same behaviour?181Views0likes0Comments