Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1966
Views
5
Helpful
3
Replies

Need to Block TLS 1.0 on Cisco FTD

ShineSudheesh
Level 1
Level 1

‎09-14-2021 12:15 AM

Dear All,

 

We have a server hosted on the inside network and clients are accessing that server from internet.We have FTD as our perimeter firewall.The requirement is to block TLS 1.0 connections to the Server.Please let me know how we can block the same on the FTD firewall.

0 Helpful
3 Replies 3

Karsten Iwen
VIP
VIP

‎09-14-2021 12:23 AM - edited ‎09-14-2021 12:24 AM

The first action is to disable it on the server. Then, on FTD, you can configure a control in the SSL-Policy:

https://www.cisco.com/c/en/us/td/docs/security/firepower/660/configuration/guide/fpmc-config-guide-v66/understanding_traffic_decryption.html#id_106234

 

ShineSudheesh
Level 1
Level 1
In response to Karsten Iwen

‎09-14-2021 12:32 AM

@ Karsten Iwen

 

Do we require any specific license for the SSL policy creation?

0 Helpful

Karsten Iwen
VIP
VIP
In response to ShineSudheesh

‎09-14-2021 12:35 AM

You need to have strong-encryption enabled, but no other license is needed.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card