perfect forward secrecy cipher

Question

BIG-IP LTM2000  V11.4.1 , I want to use pfs cipher and tls1.2  for ssl offloading ; 11.4.1 supported Perfect Forward Secrecy ? how to configured PFS cipher.&nbsp;

vijay_e · Answer

11.4.1 supports TLS1.2 and ECDHE and hence, supports PFS.
&nbsp;
- this has information on cipher suites supported by different F5 code versions.
&nbsp;
PFS is provided by DHE/ECDHE.
&nbsp;
In order to check if your code version supports DHE/ECDHE, check output from tmm --clientciphers DEFAULT
&nbsp;

Forum Discussion

perfect forward secrecy cipher

1 Reply

Recent Discussions

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

minimum tmos software version for connect CIS (openshift)

Related Content

Lightboard Lessons: Perfect Forward Secrecy

Lightboard Lesson: Perfect Forward Secrecy Inspection Visibility

Heartbleed and Perfect Forward Secrecy

Lightboard Lessons: Unexpected Side Effects of Perfect Forward Secrecy

F5 Distributed Cloud's Secure Multi-Cloud Networking (MCN) and SAP S/4 HANA: The perfect match