Bug ID 504387: SSL profile goes into passthrough mode

Last Modified: Sep 13, 2023

Affected Product(s):
BIG-IP All(all modules)

Known Affected Versions:
11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.5.5, 11.5.6, 11.5.7, 11.5.8, 11.5.9, 11.5.10, 12.1.0 HF1, 12.1.0 HF2, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2

Fixed In:

Opened: Feb 03, 2015

Severity: 3-Major


TMM fails to log any error messages when the SSL COMPAT stack fails to initialize successfully. This sort of failure causes the SSL profile as a whole to fail its initialization, and go into a pass-through mode. And there is *NO* error message to log this issue so it is difficult to debug.


The SSL profile will go into passthrough mode. There is no error message to log when the SSL COMPAT stack fails to initialize successfully.


Configure an unsupported COMPAT cipher-suite like "COMPAT+DES-CBC-SHA".


Avoid configuring profiles with unsupported cipher suites.

Fix Information

We will log the error message showing the reason of the failure when such issue happens.

Behavior Change

Guides & references

K10134038: F5 Bug Tracker Filter Names and Tips