SSL getting reset - ssl_select_suite:5886

Question

On one of the virtual server for only one client, we are seeing in SSL debug (with TCP RST Cause tmsh settings), i can see that it is failing with -&nbsp;
Sep 27 16:27:07 F5-Test debug tmm3[22672]: 01260009:7: Connection error: ssl_select_suite:5886: no shared ciphers (40)
Sep 27 16:27:07 F5-Test info tmm3[22672]: 01260013:6: SSL Handshake failed for TCP 1.1.1.1:1917 -&gt; 10.10.10.10:443
Sep 27 16:27:13 F5-Test debug tmm2[22672]: 01260009:7: Connection error: ssl_select_suite:5886: no shared ciphers (40)
Sep 27 16:27:13 F5-Test info tmm2[22672]: 01260013:6: SSL Handshake failed for TCP 1.1.1.1:1922 -&gt; 10.10.10.10:443&nbsp;
Any thoughts, what could be the reason?&nbsp;

samir_jha_52506 · Answer

As per log its looks like your client machine the SSL version or the Cipher list supported by the F5 and its peer (the client) doesn't match.&nbsp;
Please do tcpdump on the client or on the F5 system to check the ssl handshake. You may see that there is no matching ciphers between the browser and the VS. &nbsp;

nuruddin_ahmed_ · Answer

yes verified, client had windows 2003 machine which was connecting to tlsv1 but using old unsecure ciphers. Worked after they applied a windows upgrade for ciphers.
Thanks&nbsp;

Forum Discussion

SSL getting reset - ssl_select_suite:5886

2 Replies

Recent Discussions

Advise on setting up IRULE

google autenticator broken barcode

Port Group on F5OS network setting

vulnerabilities (CVE-2020-36363), CVE-2016-0736,CVE-2019-6593-FOR VERSION BIGIP LTM-16.1.4

Unwinding the Benefits of Investing in White Label Crypto Wallet

Related Content

Getting Started

Getting Started with BIG-IP Next: Fundamentals

Getting Started with BIG-IP Next: Migrating an Application Workload

Getting TCP Reset-0 from server when routing HTTPS traffic via F5

Get Started with WAAP Security Incidents