Custom Response Upon Denial with iRule.

I added that cipher and then tried each of the irules listed above, but I am at the same result.

Hi, can you explain the behavior ? I tested the same configuration on my lab in multiples versions and everything work as expected

The TLSv1 in the cipher and using any of the irules that y'all were kind enough to provide above, I receive the same message. Firefox tells the testers that the website owner has configured the site improperly. IE says that in order to access the site they will have to enable TLS 1.0, 1.1, or 1.2. It is basically acting as if no irule exists at all and immediately being denied and receiving the default message from the browser. This is even with TLS1 allowed in the ciphers and the irule in place.. It is odd. I'm wondering now if there is just another way, via ifile or something else, to go about doing this check and redirecting them to a notification page? Thoughts?

The problem is that if the browser decide that the connection is untrusted or there is a cipher mismatch, you can't do anything on the BIG-IP. You can do something only if the ssl handshake works fine. In your case, it sounds that there is a cipher mismatch between your VS and the browser used for testing. Please note that if the testers add fiddler or other debugging tools, it can change the behavior of the connection.

They are developers, so they may have something like that installed, but I have tested myself in Firefox and receive the same error messages. I understand what you're saying about the SSL handshake, and I believe that is the issue too; that is why I am now wondering if something like a redirect via irule/ifile would work better for this.