Forum Discussion
How to disable only TLS v1 & TLS v1.1 on specific virtual server
- Feb 22, 2023
try this irule:
when CLIENT_ACCEPTED {
SSL::profile vip_ssl_no_TLSv1
}where vip_ssl_no_TLSv1 is another SSL profile where you disable whatever you want.
I tested with this cipher string : DEFAULT:!TLSv1:!TLSv1_1
here is a link that shows you how,:
https://support.f5.com/csp/article/K33000012
you do it from SSL CLient profile.
- CpetFeb 22, 2023Altocumulus
Hi Mihaic,
Thanks for your responce.
I have allready read the suggested article but i want to disable TLS v1 & TLS v1.1 only on a specific virtual server without disable TLS v1 & TLS v1.1 in the SSL profile.Is it possible with an irule for example?- P_KueppersFeb 22, 2023MVP
Create a new SSL-Profile and use your current one as parent. Then deactivate tls1/1.1 and put this on the virtual server.
- CpetFeb 22, 2023Altocumulus
Hi,
Correct , but i don't want to create a lot of SSL profiles.Also I wanted to know if it was possible to do it with an irule.
Thanks.
Recent Discussions
Related Content
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com