Forum Discussion
Pascal_Tene_910
Historic F5 Account
If you want to mitigate TLS POODLE and RC4 weaknesses at the same time, you will have to upgrade to 11.5.0 or later, then create SSL profile similar to:
tmsh create /ltm profile client-ssl TLS-Padding ciphers !SSLv3:AES-GCM
Note that above profile will only allow clients that can support AES-GCM ciphers. This is quite limited. and might lead to other issues.
cisco_01_157892
May 05, 2015Nimbostratus
I just tested it but it does not work .is what the hostfix8 for 11.4.1 is more stable