Chris_123510
Oct 20, 2015Nimbostratus
TLS
I am trying to set up my LTM so that it will only accept TLS connections. They are asking that we do away with SSLv3 completely. I am not sure how to do that without causing interruptions, we have ...
SSL protocol and ciphersuite configuration is under the client ssl profiles (for clientside) and server ssl profiles (for serverside), within the profiles you have the option of setting ciphersuite and protocol the following links should help you.
sol13163: SSL ciphers supported on BIG-IP platforms (11.x - 12.x)
sol15194: Overview of the BIG-IP SSL/TLS cipher suite
sol8802: Using SSL ciphers with BIG-IP Client SSL and Server SSL profiles
If you're running 11.5.0 or above SSLv3 is disabled in the 'DEFAULT' ciphersuite list, anything earlier changing the ciphersuite setting in the ssl profile to 'DEFAULT:!SSLv3' should work.