Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1252
Views
5
Helpful
2
Replies

TLS 1.2 Implementation

vyas.2020
Level 1
Level 1

‎08-26-2021 10:26 PM

I have some point raised by audit team. I am having cisco 2811 router and recommanded below point to implement.

Model : CISCO2811

IOS     : c2800nm-advsecurityk9-mz.124-20.T2.bin

 

   'It is recommended to:
- Disable SSLv2 and SSLv3
- Use TLS 1.2 or 1.3 with strong cipher suits

 

I have googled a lot but not find any solution which I can understand.

Labels:
0 Helpful
2 Replies 2

Leo Laohoo
Hall of Fame
Hall of Fame

‎08-26-2021 10:31 PM - edited ‎08-27-2021 01:14 AM

@vyas.2020 wrote:

c2800nm-advsecurityk9-mz.124-20.T2.bin

   'It is recommended to:
- Disable SSLv2 and SSLv3
- Use TLS 1.2 or 1.3 with strong cipher suits

IOS version 12.2(20)T2?  TLS 1.2 or 1.3?  
Tell the Audit Team it is possible if someone is going to pony up a wad of cash.  

TLS 1.2 support starts with ISR G2.  ISR G1, including 2800, will not support TLS 1.2.

TLS 1.2 Compatibility Matrix for Cisco Collaboration Products

marce1000
VIP
VIP

‎08-27-2021 12:06 AM

 

 - Not possible , the only thing you can do is use sufficient recent software release(s) , and check if these security-items have been improved.

 M.



-- Each morning when I wake up and look into the mirror I always say ' Why am I so brilliant ? '
    When the mirror will then always repond to me with ' The only thing that exceeds your brilliance is your beauty! '
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card