whether default cipers supports to TLS 1.0 in TMOS 13.1.1 or not.

Question

I want to enable TLSv1.2. so i want to confirm that whether default cipers supports to TLS 1.0 in TMOS 13.1.1 or not. and how we can enable the TLSv 1.2 on BIG IP.&nbsp;

youssef1 · Answer

Hi,&nbsp;
You have all info needed in this article (K13163: SSL ciphers supported on BIG-IP platforms (11.x - 13.x)): &nbsp;
https://support.f5.com/csp/article/K13163&nbsp;
As you can noticed, TLS1.2 is supported in the NATIVE SSL stack in BIG-IP 13.0.0 - 13.1.0.&nbsp;
You don't need to enable it by default. but you can force it (use only tls1.2). but in this case client that not support tls1.2 will receive a reset.&nbsp;
regards,&nbsp;

Forum Discussion

whether default cipers supports to TLS 1.0 in TMOS 13.1.1 or not.

1 Reply

Recent Discussions

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Pricing when used with aws waf

F5 terminal - help to run commands - disk space full

import live updates from version x to version y

Tenant image upgrade

Related Content

Cipher Suites Supported (12.1.5.3)

TMOS v17 support policy

f5 iHealth and Support

LTM Diameter iRules and Profile Configurations with Support for Server Initiated Request

Parameteters in default https monitor