Follow

Q&A: What would cause an increment to the SSL Handshake Failure in the SSL Stats?

 

Question

  • What would cause an increment to the SSL Handshake Failure in the SSL Stats?
    • What conditions and data are matched when the Portal SSL stats increment the Handshake Failure count?

 

Environment

  • Silverline Proxy/Proxies
    • HTTPS/SSL
  • Silverline WAF
  • Silverline DDoS Proxy

 

Answer

  • There are two categories for incrementing SSL handshake rejected count.
    1. SSL Handshake failed for TCP https://support.f5.com/csp/article/K11058264
      The peer closes the connection before the SSL handshake completes
    2. No shared ciphers between SSL peers - https://support.f5.com/csp/article/K70492947

      This message occurs when all of the following conditions are met:
         1) A virtual server is configured with a Client SSL profile.
         2) An SSL client attempts to connect to the virtual server.
         3) None of the ciphers sent by the client match the configured ciphers in the Client SSL profile.

 

Related Content

Was this article helpful?
0 out of 0 found this helpful
Have more questions? Submit a request