In our current version of Dataminer (10.0.4.0), the Cube tries to connect to 443 with:
Handshake Protocol: Client Hello
Handshake Type: Client Hello (1)
Length: 127
Version: TLS 1.0 (0x0301)
Random: 61b20030423ba12631b0a21b3fe174a99719e2220b35d3c861fd9bd236235535
Session ID Length: 0
Cipher Suites Length: 14
Cipher Suites (7 suites)
Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA (0xc00a)
Cipher Suite: TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA (0xc009)
Cipher Suite: TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA (0xc014)
Cipher Suite: TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA (0xc013)
Cipher Suite: TLS_RSA_WITH_AES_256_CBC_SHA (0x0035)
Cipher Suite: TLS_RSA_WITH_AES_128_CBC_SHA (0x002f)
Cipher Suite: TLS_RSA_WITH_3DES_EDE_CBC_SHA (0x000a)
Compression Methods Length: 1
Compression Methods (1 method)
Extensions Length: 72
Extension: server_name (len=37)
Extension: supported_groups (len=8)
Extension: ec_point_formats (len=2)
Extension: session_ticket (len=0)
Extension: extended_master_secret (len=0)
Extension: renegotiation_info (len=1)
[JA3 Fullstring: 769,49162-49161-49172-49171-53-47-10,0-10-11-35-23-65281,29-23-24,0]
[JA3: 54328bd36c14bd82ddaa0c04b25ed9ad]
This is dropped by our load balancer because TLS 1.0 and TLS 1.1 are not secure.
Can anyone confirm if 10.1.0.0 is using TLS 1.2?
Hi Alasdair,
This was indeed a software issue in the past but has been fixed in DataMiner 10.0.7.0 and higher (release note 25803). This should no longer happen in 10.1.0.0.
Perfect, thank you Jens.