Assistance in enabling TLS1.1 and TLS1.2

Question

Need assistance in enabling TLS1.1 and TLS 1.2 in BIGIP LTM&nbsp;
Kindly help in providing the steps for enabling TLS1.1 and TLS 1.2 in BIGIP LTM&nbsp;
No other protocols should be disabled on the load balancer. The final result will be
TLS 1.2 Enabled
TLS 1.1 Enabled
TLS 1.0 Enabled
SSL 3.0 Enabled
SSL 2.0 Enabled&nbsp;
My current software version : BIG-IP 11.2.1 Build 862.0 Hotfix HF2 &nbsp;

boneyard · Answer

this document indicates those are already supported and active if you haven't changed the default cipher string&nbsp;
http://support.f5.com/kb/en-us/solutions/public/13000/100/sol13156.html&nbsp;
although SSLv2 isn't enabled by default and shouldn't be in my opinion.&nbsp;
could you please show your current cipher string used in the client SSL profile?&nbsp;

rajendran2002_1 · Answer

Hi Boneyard&nbsp;
Thank you for the answer. I don't use any custom ciphers. just using the default ciphers in ssl profile&nbsp;

boneyard · Answer

then you already support most of what you say you want. if this server is reachable form the internet you can use ssl labs to double check what is supported

https://www.ssllabs.com/ssltest/

rajendran2002_1 · Answer

Thank you, this works&nbsp;

boneyard · Answer

if this answered your question please flag it as such.

Forum Discussion

Assistance in enabling TLS1.1 and TLS1.2

5 Replies

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

2026 301a exam

F5OS login with admin/root failed via console

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

UCS Encryption Question

Unblock Request WAF

Related Content

Introducing the F5 AI Assistant for BIG-IP

Re: Welcome to the F5 BIG-IP Migration Assistant

Introducing AI Assistant for F5 Distributed Cloud, F5 NGINX One and BIG-IP

iRule to assist with CVE-2022-22965 mitigation

Future-Proofing Your Network: Enabling Quantum Ciphers on F5 BIG-IP TMOS 17.5.1

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS