Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Enable TLS 1.3 and Disable DH group

Go to solution
SolarJeans
Cirrus
Cirrus

‎22-Mar-2023 01:53

Hello Experts,

I have a task need to enable TLS 1.3 and disable DH group.

To enable TLS 1.3, I can use cipher group to do by this link https://my.f5.com/manage/s/article/K10251520

To disable DH, I can use DEFAULT:!DH

But how to do this together?

Labels:
0 Kudos
1 ACCEPTED SOLUTION
3 REPLIES 3

Go to solution
Paulius
MVP
MVP

‎22-Mar-2023 05:54

@SolarJeans This link should assist you in creating the appropriate custom cipher group.

https://techdocs.f5.com/en-us/bigip-15-0-0/big-ip-ltm-configuring-custom-cipher-string-for-ssl-negot...

Go to solution
SolarJeans
Cirrus
Cirrus
In response to Paulius

‎30-Mar-2023 21:10

Hello,

Yes, I try to create custom cipher rule and custom cipher group and issue fixed. Thanks a lot.

0 Kudos

Go to solution
Samir
MVP
MVP

‎22-Mar-2023 06:14

You can try something like this to enable tls1.3 and disable DHE

DEFAULT:TLSV1_3:!DHE
Copyright © 2023 Khoros, LLC