Forum Discussion
Brad_Parker
Cirrus
It is very possible that the ciphers are no longer compatible. Could your server admins only be allowing SSLv3 and starting with 11.5 the"DEFAULT" cipher list doesn't include SSLv3?
https://support.f5.com/kb/en-us/solutions/public/13000/100/sol13156.html
JD1
Mar 05, 2015Altostratus
I had considered that, and tried adding SSLv3 back in already (for testing), however it would still beg the question "Why only when the server side is configured to accept/request client certificate?".
Additionally, ssldump shows that the server side responds with a matching cipher available.