For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Parveez_70209's avatar
Parveez_70209
Icon for Nimbostratus rankNimbostratus
Feb 04, 2015

No TLSv1: Will this Disable only TLS1.0 while allow TLS1.1/TLS1.2/TLS1.3 ?

Hi Team,   We are in a process of disabling all SSL plus TLS1.0 version, and we are running 10.2.4 version.   Kindly confirm whether by saying No TLSv1: Will this Disable only TLS1.0 while allo...
Vitaliy_Savrans's avatar
Vitaliy_Savrans
Icon for Nacreous rankNacreous
Feb 04, 2015

You can check this by using:

    tmm --clientciphers '!TLSv1'
Ken_McGarrahan_'s avatar
Ken_McGarrahan_
Icon for Nimbostratus rankNimbostratus
Mar 24, 2015
On an 11.6 image, the above lists 0 ciphers.Attempting to add it to a client profile yields the following: tmsh modify ltm profile client-ssl mySecureProfile ciphers "-TLSv1" 01070311:3: Ciphers list '-TLSv1' for profile /Common/mySecureProfile denies all clients Is there no method to limit TLS support to only TLSv1_1 or TLSv1_2?