disabling protocol

Question

Hi,
What is the difference  between the below  procedures
1) 
tmsh modify sys http ssl-protocol 'all -SSLv2 -SSLv3 -TLSv1'&nbsp;
tmsh list sys http ssl-protocol
sys httpd {
    ssl-protocol "all -SSLv2 -SSLv3 -TLSv1"
}&nbsp;
2) 
tmsh list /ltm profile client-ssl Test options
ltm profile client-ssl Test {
    options { dont-insert-empty-fragments no-tlsv1 }
}&nbsp;
If we want to disable tlsv1 and keep only tlsv1.1 and 1.2 , it can be  do with CIPHERS ? 
( ciphers DEFAULT) ,If yes what would be the string ? &nbsp;
Thanks&nbsp;

amintej · Answer

Hello,&nbsp;
This command "tmsh modify sys http" modifies F5 gui console, if you want to modify F5 Virtual server SSL configuration you should use "ltm profile"&nbsp;

Forum Discussion

disabling protocol

1 Reply

Recent Discussions

Import PKCS 12 SSL to Device Certificate via API/Script or CLI on BIG-IP

Help with URL Masking

F5 iRule to replace host to path

Chrome V 124+ on MacOS - Virtual Server Access Issue

F5 Rseries R2600 Tenant sizing

Related Content

SSL protocol mismatch

BIG-IP BGP Routing Protocol Configuration And Use Cases

Proxy Protocol Initiator

Proxy Protocol Receiver

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet