Forum Discussion

Nimbostratus

10 years ago

Solved

Inject TLS version into HTTP header

I'm planning to disable support for TLS 1.0, but want to give my users some time to update to modern browsers before I pull the plug on older browsers that don't support TLS 1.1 and 1.2. I'd like to ...

10 years ago

Yep, this should do the trick for you.

when HTTP_REQUEST {
    HTTP::header insert "tls-version" [SSL::cipher version]
}

Brad_Parker

Cirrus

10 years ago

Yep, this should do the trick for you.

when HTTP_REQUEST {
    HTTP::header insert "tls-version" [SSL::cipher version]
}

Doppler44_23469

Nimbostratus

10 years ago

That did the trick. The header appears with the appropriate value: "TLSv1", "TLSv1.1", or "TLSv1.2". Thanks again.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Inject TLS version into HTTP header

SSO Login Update Coming to DevCentral

Kevin - June 2026 Featured F5er

Tyler - May 2026 Featured Member

Recent Discussions

ASM attack signatures not syncing between active and standby F5

Hardware BIG-IP appliance reach EOSS, but the software version running on it not yet?

VPN Communication Error with F5 BIG-IP Edge Client

simultaneous disabling / enabling of all LTM objects

Query on source IP preservation for syslog traffic through F5 virtual server

Related Content

LLM Prompt Injection Detection & Enforcement

Logging/Blocking possible prompt injection

Host header injection iRule

WAF evasion techniques for Command Injection

Header injection rule

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS