My Oracle Support Banner

SSLv3 Accepted By F5 Load Balancer Even Though WebLogic Server Rejects It (Doc ID 2001694.1)

Last updated on AUGUST 21, 2023

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.


Right now, our WebLogic servers are configured on server startup to accept ONLY the TLSv1 protocol. So, when we try to connect via SSLv3, we're getting an error as expected. But our managed servers are exposed to front end apps using F5 load balancers. The F5 Virtual IP (VIP) load balances our two managed servers. When we try to hit the F5 VIPs, we are able to get through using SSLv3, even though WLS is only configured to allow TLSv1. Here, we have a couple of questions.

  1. Is the handshake still happening on SSLv3 on WLS side?
  2. Is this an issue with F5, where F5 is doing handshake on SSLv3 to the front end apps and TLSv1 to the backend managed servers?


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.