Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM, GTM, LTM
Known Affected Versions:
11.6.0, 11.6.1, 11.6.2, 11.6.3, 11.6.3.1, 11.6.3.2, 11.6.3.3, 11.6.3.4, 11.6.4, 11.6.5, 11.6.5.1, 11.6.5.2, 11.6.5.3, 12.0.0, 12.0.0 HF1, 12.1.0 HF1, 12.0.0 HF2, 12.1.0 HF2, 12.0.0 HF3, 12.0.0 HF4, 12.1.1 HF1, 12.1.1 HF2, 12.1.2 HF1, 12.1.2 HF2, 12.1.0, 12.1.1, 12.1.2
Fixed In:
13.0.0, 12.1.3
Opened: Jun 21, 2016 Severity: 3-Major
If and external crypto offload client is configured with an SSL profile and renegotiation is enabled for the SSL profile, the crypto client connection will fail when the SSL connection is renegotiated.
Crypto client connection to the crypto server will fail.
External crypto offload client configured with an SSL profile with renegotiation enabled.
Disable renegotiation on the SSL profile.
The crypto client connection to the crypto server will no longer fail when the SSL connection is renegotiated.