Forum Discussion
Hello Prashnat,
If you want to check what are the supported ciphers on your backend, the easiest way is to go to the backend and check the complete list of ciphers using for example the command "openssl ciphers" if it is a linux system.
If you don't have the hand on the backend server, you will need to use a script to list all supported ciphers based on your client ciphers. For example if you connect to the CLI of the F5, you can use the following script to list all supported ciphers by the server.
If your need is to check ciphers of the SSL Server Profile on the F5, you can use
tmm --serverciphers DEFAULT
by default if you didn't change anything to the SSL Profile the value of the ciphers parameter is "DEFAULT" if you change it to other thing use the same command but replace "DEFAULT" by your value.
Finally if you want to know which SSL cipher is used for the handshake, you can use the command
openssl s_client -connect backend_ip:backend_port
Regards