SSLv3 Accepted By F5 Load Balancer Even Though WebLogic Server Rejects It (Doc ID 2001694.1)

Last updated on AUGUST 22, 2024

Applies to:

Oracle WebLogic Server - Version 10.3.6 and later
Information in this document applies to any platform.

Goal

Right now, our WebLogic servers are configured on server startup to accept ONLY the TLSv1 protocol. So, when we try to connect via SSLv3, we're getting an error as expected. But our managed servers are exposed to front end apps using F5 load balancers. The F5 Virtual IP (VIP) load balances our two managed servers. When we try to hit the F5 VIPs, we are able to get through using SSLv3, even though WLS is only configured to allow TLSv1. Here, we have a couple of questions.

Is the handshake still happening on SSLv3 on WLS side?
Is this an issue with F5, where F5 is doing handshake on SSLv3 to the front end apps and TLSv1 to the backend managed servers?

Solution

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Goal

Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

SSLv3 Accepted By F5 Load Balancer Even Though WebLogic Server Rejects It (Doc ID 2001694.1)

Applies to:

Goal

Solution

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!