Forum Discussion

Nimbostratus

Nov 18, 2015

Solved

Inject TLS version into HTTP header

I'm planning to disable support for TLS 1.0, but want to give my users some time to update to modern browsers before I pull the plug on older browsers that don't support TLS 1.1 and 1.2. I'd like to ...

Brad_Parker_139
Nov 18, 2015
Yep, this should do the trick for you.

when HTTP_REQUEST { HTTP::header insert "tls-version" [SSL::cipher version] }

Brad_Parker

Cirrus

Nov 18, 2015

Yep, this should do the trick for you.

when HTTP_REQUEST {
    HTTP::header insert "tls-version" [SSL::cipher version]
}

Doppler44_23469
Nimbostratus
Nov 18, 2015
Brad, thank you. That's much simpler than I thought it would be.
Doppler44_23469
Nimbostratus
Nov 18, 2015
That did the trick. The header appears with the appropriate value: "TLSv1", "TLSv1.1", or "TLSv1.2". Thanks again.

Forum Discussion

Inject TLS version into HTTP header

Recent Discussions

What is the meaning is 52% block in WAF

Rundeck ansible F5 errors

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Host header injection iRule

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Mitigating OWASP API Security Risk: Injection flaws using F5 XC Platform

Automation of OWASP Injection mitigation using F5 Distributed Cloud Platform

Set HTTP version