Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP All
Known Affected Versions:
11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2
Fixed In:
12.0.0
Opened: Feb 03, 2015 Severity: 3-Major
TMM fails to log any error messages when the SSL COMPAT stack fails to initialize successfully. This sort of failure causes the SSL profile as a whole to fail its initialization, and go into a pass-through mode. And there is *NO* error message to log this issue so it is difficult to debug.
The SSL profile will go into passthrough mode. There is no error message to log when the SSL COMPAT stack fails to initialize successfully.
Configure an unsupported COMPAT cipher-suite like "COMPAT+DES-CBC-SHA".
Avoid configuring profiles with unsupported cipher suites.
We will log the error message showing the reason of the failure when such issue happens.