09-02-2015 03:49 PM
I'm having trouble getting TLS 1.2 to work on an ADX 1000 with Firmware 12.4.00W
System Version 12.4.00wT401 Apr 20 2015 17:50:03 PDT label: ASM12400w
Here's an example, this particular "domain" has an wildcard cert. Is there a break down of which cipher-suites are specific to which TLS version? Is there a method/recommendations for changing their ordering?
ssl profile *.domain.com
disable ssl2 ssl3
11-13-2015 09:54 AM
Correct, TLS 1.1 and 1.2 is not supported until 12.5. I would recommend going to 12.5.02e and unlock all barrel processors as the cavium chip has problems with the higher ciphers on one BP.