bobdunn-454
May 24, 2023Altostratus
Translating SSL Ciphers names into the labels used in the profiles.
F5 LTM V15.1.5.1
I have a client that wants to use only these ssl ciphers. He runs a scan and it shows them listed as:
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 (secp384r1) - A
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 (secp384r1) - A
TLS_RSA_WITH_AES_128_GCM_SHA256 (rsa 4096)
TLS_RSA_WITH_AES_256_GCM_SHA384 (rsa 4096)
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 (dh 1024) - A
TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 (dh 1024) - A
What is the corresponding label on the F5 cipher list. Is there a cheat sheet with the above notation on the left and the F5 clientSSL label on the right?
Thanks,
Bob Dunn
Hi Bob Dunn,
IANA, OpenSSL, NSS and GnuTLS use different naming for the same ciphers. BIG-IP uses OpenSSL.
You can view the name table from the link.