From 5860121b8a9ccae77020c63cf0df209ff78d5e06 Mon Sep 17 00:00:00 2001
From: Daniel Lenski <dlenski@gmail.com>
Date: Tue, 31 Aug 2021 16:30:36 -0700
Subject: [PATCH] Mention support for DTLSv1.2 in F5 BIG-IP v16 or newer

Signed-off-by: Daniel Lenski <dlenski@gmail.com>
---
 www/f5.xml | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/www/f5.xml b/www/f5.xml
index fbea3224..4b072c2c 100644
--- a/www/f5.xml
+++ b/www/f5.xml
@@ -39,8 +39,9 @@ If you have access to an F5 VPN which uses other types of authentication (e.g.
 RSA or OATH tokens), please send information to <a href="mail.html">the mailing
 list</a> so that we add support to OpenConnect.</p>
 
-<p>Connectivity over DTLS is supported, but currently limited to DTLSv1.0 because
-experiments show that BIG-IP server v15 cannot negotiate correctly down to
+<p>Connectivity over DTLS is supported. On BIG-IP server v16, it is possible to use
+either DTLSv1.0 or DTLSv1.2, if configured correctly. On BIG-IP server v15, it is limited to
+DTLSv1.0 because experiments show that BIG-IP server v15 cannot negotiate correctly down to
 DTLSv1.0 when a newer version of DTLS is attempted.</p>
 
 	<INCLUDE file="inc/footer.tmpl" />
-- 
2.50.1