- Products
- Learn
- Local User Groups
- Partners
- More
Welcome to Maestro Masters!
Talk to Masters, Engage with Masters, Be a Maestro Master!
Join our TechTalk: Malware 2021 to Present Day
Building a Preventative Cyber Program
Be a CloudMate!
Check out our cloud security exclusive space!
Check Point's Cyber Park is Now Open
Let the Games Begin!
As YOU DESERVE THE BEST SECURITY
Upgrade to our latest GA Jumbo
CheckFlix!
All Videos In One Space
Hello,
we are dealing with the issue of how to disable the entire TLS 1.0/1.1 for outbound HTTPS inspection. I know sk126613, but we dont want to disable ciphers but used protocol. Only TLS 1.2 from GW should be allowed. The configuration should be done one GW not clients, that's a different part.
Some ciphers are used both in TLS 1.0/1.1/1.2 eg.
TLS_DHE_RSA_WITH_AES_128_CBC_SHA
so disabling only ciphers is not what we are looking for.
Recommend discussing this further with TAC, as I recall this needs a change to ssl_min_ver parameter via GuiDBedit.
https://community.checkpoint.com/t5/General-Topics/Disable-TLS-1-0/m-p/70338/page/2
thx, for some reason I miss this one in search box - Disable-TLS-1-0
About CheckMates
Learn Check Point
Advanced Learning
YOU DESERVE THE BEST SECURITY