Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

vvskaladhar_488

Icon for Nimbostratus rank

Nimbostratus

Nov 30, 2016

How to disable TLSv1.1

HI All, in SSL client ciphers TLSv1 is disabling TLSv1.0 but not TLSv1.1 , Can some one please let me know what should i add to disable TLSv1.1 ?

application delivery

Hannes_Rapp_162

Icon for Nacreous rank

Nacreous

Nov 30, 2016

You need to use an underscore instead of a dot, for example

DEFAULT:!TLSv1_1

cipher string will work.

You can verify that

:!TLSv1.1

doesn't work by executing the following:

tmm --clientciphers 'DEFAULT:!TLSv1.1'

(BigIP Bash shell).

Kevin_Stewart
Employee
Nov 30, 2016
Good catch. ;)

Jonathan - March 2026 Featured Member

DevCentral News

featured member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

DevCentral News

2026 F5 DevCentral MVP Announcement

DevCentral News

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5