Per the latest 4.1.4 and 5.2.1 release admin guides, Secure Renegotiation is enabled by default.
ACOS supports secure renegotiation of client-server TLS connections, as described in RFC 5746, Transport Layer Security (TLS) Renegotiation Indication Extension. Support for the renegotiation_info TLS extension is included. Secure TLS renegotiation allows ACOS to securely renegotiate TLS connections with clients, using existing secure connections. RFC 5746 support is automatically enabled for client-server TLS sessions.
jchasles
Member ✭
Comments
Per the latest 4.1.4 and 5.2.1 release admin guides, Secure Renegotiation is enabled by default.
ACOS supports secure renegotiation of client-server TLS connections, as described in RFC 5746, Transport Layer Security (TLS) Renegotiation Indication Extension. Support for the renegotiation_info TLS extension is included. Secure TLS renegotiation allows ACOS to securely renegotiate TLS connections with clients, using existing secure connections. RFC 5746 support is automatically enabled for client-server TLS sessions.
Hi
My device use last 4.1.4-GR1-P8 and "secure renegotiation" is not OK when we test with SSLabs...
Regards
That is very interesting. Would you be willing to post a sanitized version of your VIP config?
It's not supported on VThunder.
Thanks for the update! Would you be able to share where you found this limitation?
from A10 support