Forum Discussion

Nimbostratus

Jan 14, 2016

How to turn off TLS1.0 – and only allow TLS1.1 and TLS1.2 on LTM 2000s

When we implement the new F5 load balancers and proxies, we have to turn off TLS1.0 – we will only allow TLS1.1 and TLS1.2

application delivery

BIG-IP

iaine

Nacreous

Jan 14, 2016

This thread goes into detail on this

If you are unsure about changing the ciphers in the ssl profile then if you look in the Options list in the profile then there is an option No TLSv1 that you can use if you prefer

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How to turn off TLS1.0 – and only allow TLS1.1 and TLS1.2 on LTM 2000s

ICYMI - Steve Wozniak at AppWorld 2026

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

VIP is not responding on SYN after enabling other modules like ASM, APM and AFM.

F5 Software Downgrade from version 17.x.x to 15.x.x

LB Connection Limit Detection Method

Verify Client Certificates

SSL cipher

Related Content

Enableing TLS1.2

Redirect TLS1.0 to TLS1.2

Enforce TLS1.0 & TLS1.1 to TLS1.2

Make a copy of all existing clientssl profiles requiring TLS1.2

Ciphers for restricting traffic to TLS1.2

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS