{"id":880,"date":"2014-10-28T13:05:45","date_gmt":"2014-10-28T13:05:45","guid":{"rendered":"https:\/\/fir3netwp.gmsrrpobkbd.com\/2014\/10\/28\/mitigating-poodle-on-the-brocade-adx\/"},"modified":"2021-07-24T17:06:36","modified_gmt":"2021-07-24T17:06:36","slug":"mitigating-poodle-on-the-brocade-adx","status":"publish","type":"post","link":"https:\/\/www.fir3net.com\/Loadbalancers\/Brocade\/mitigating-poodle-on-the-brocade-adx.html","title":{"rendered":"Mitigating Poodle on the Brocade ADX"},"content":{"rendered":"
In order to mitigate the Poodle vulnerability on the Brocade ADX SSLv3 must be disabled. However this can only be achieved via the code release 12.4s, which disables SSLv3 completely. All code versions prior to this do not have any method or option to disable the SSLv3 protocol.<\/p>\n
On the ADX there are 2 types of SSL healthcheck<\/a>. They are,<\/p>\n Below shows the various versions used for the different healthchecks,<\/p>\n Should you want to enable SSLv3 for your Simple healthchecks the commandserver sslv3-in-simple-ssl-hc<\/span>is available.<\/p>\n NOTE <\/span> 12.4s and all versions below only support TLS 1.0.<\/p>\n If both the client and server have only SSLv3 enabled then after upgrading to 12.4s the SSL connection will not establish, as mentioned this is because the ADX does not allow the use of the SSLv3 protocol. Should you need to troubleshoot this or another SSL issues the following commands can be used within rconsole virtual<\/span>.<\/p>\n The following versions provide the following features.<\/p>\n <\/p>\n <\/p>\n","protected":false},"excerpt":{"rendered":" In order to mitigate the Poodle vulnerability on the Brocade ADX SSLv3 must be disabled. However this can only be achieved via the code release 12.4s, which disables SSLv3 completely. All code versions prior to this do not have any method or option to disable the SSLv3 protocol. HealthChecks On the ADX there are 2 … Read more<\/a><\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[14],"tags":[],"yoast_head":"\n\n
\n\n
\n HC Type<\/strong><\/td>\n Code<\/strong><\/td>\n Version<\/strong><\/td>\n<\/tr>\n \n Simple<\/td>\n 12.4.00r + below<\/td>\n SSLv3<\/td>\n<\/tr>\n \n Simple <\/td>\n 12.5.01e + below<\/td>\n SSLv3<\/td>\n<\/tr>\n \n Complete<\/td>\n 12.4.00r + below<\/td>\n TLS1.0<\/td>\n<\/tr>\n \n Complete<\/td>\n 12.5.01e + below<\/td>\n TLS1.0<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n Troubleshooting<\/h2>\n
show ssl statistics alert show ssl statistics counters show cp stat<\/pre>\n
Appendix<\/h2>\n
\n