It seems that the hack for the F5 firewalls breaks connections to some cisco servers [0]. That fix in the current code is now activated if the client hello exceeds 255 bytes. No idea if the same bug affects its VPN servers. regards, Nikos [0]. https://supportforums.cisco.com/announcement/12198406/heartbleed-patched-email-servers-fail-tls-connections-esas-80