Not able to connect 2 way SSL from application server to f5

my F5

Sys::Version Main Package Product BIG-IP Version 11.5.4 Build 0.56.256 Edition Engineering Hotfix Date Fri Mar 25 14:46:24 PDT 2016

one doubt which I have :

on F5 chippers is selected as default

while at my application server end

TLSv1/SSLv3, Cipher is AES256-SHA256

Part of the error message is that you're not defining a CA cert (or trust bundle) in your OpenSSL command so the client side is unable to validate/trust the server certificate. But when you say 2-way SSL, are you talking about using a client certificate as well?

Hello,

I am trying to establish 2 way ssl on my client server with f5 I created a cert for F5 > associated it with profile and VS

and similar way I created client cert. for server as well in configured it to present for ssl handshake

but im getting errors:

peer not authenticated ssl handshake failure

above is O/P from my client server which I try ssl connection towards F5

~] openssl s_client -connect f5.c1.com.gn:9010

I am trying to establish 2 way ssl on my client server with f5

I created a cert for F5 > associated it with profile and VS

Please confirm that you mean that you're trying to do SSL mutual authentication with server AND client certificates.

peer not authenticated

ssl handshake failure

As I mentioned before, part of the error is that you're not providing a way in your openssl command to validate the server's certificate. You need to define a CA certificate, or certificate bundle. If you are doing mutual SSL authentication, then you're also not providing the client cert as part of that openssl command.

Please confirm that you mean that you're trying to do SSL mutual authentication with server AND client certificates.

yes you are correct .

can you help me with correct command syntax