Ciphers for restricting traffic to TLS1.2

Question

Hello team,&nbsp;We want to disable all the lower TLS/SSL versions like SSLv3, TLS1.0 and TLS1.2 under client SSL profiles. I know i can easily do it through options list by enabling no SSLv3 etc. I know we can also achieve it using ciphers. I am looking for that Cipher string. &nbsp;Does anyone have it? Please share it.&nbsp;Thank you

mayur_sutare · Accepted Answer

Please try below string.&nbsp;ALL:!DHE:!ADH:!EXPORT:!SSLv2:!EXPORT40:!EXP:!LOW:!RC4:!SSLv3:!MEDIUM:!3DES:!RSA:!TLSv1:!TLSv1_1&nbsp;I've used this in my setup and it is working as expected. Hope it helps you too.&nbsp;Mayur

johnde · Answer

It worked as per expectations man. Thanks a lot!

Forum Discussion

Ciphers for restricting traffic to TLS1.2

2 Replies

Recent Discussions

F5 loadbalancer not working

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Related Content

SSL Orchestrator Advanced Use Cases: Enabling GCloud Organization Restrictions

Cipher Suites Supported (12.1.5.3)

Disabling Weak Ciphers

Cipher suite mismatch advertisement/warning

fellow traffic