SNI
Has anyone tried to use multiple SSL profiles on a VIP with SNI and each profile have different allowed ciphers/protocols? This article indicates that each profile can have different security requirements which I interpret as different allowed ciphers. https://devcentral.f5.com/articles/ssl-profiles-part-7-server-name-indication
However this one states that F5 "recommends" the same ciphers: https://support.f5.com/csp/article/K13452
I had a use case where I had one VIP, and needed certain clients to only have certain ciphers allowed. However, it appears that it is not possible even with SNI. The LTM does not allow you to apply any profile to the VIP where the ciphers don't match. I spoke with our F5 sales engineer and he tested in a lab and came to the same conclusion.
Has anyone found a way around this? Just curious.