DescriptionThis article describes about how to block lower TLS version for pass-through traffic.SolutionIt is possible to block lower TLS version TLS 1.0 & 1.1 version for pass-through traffic using application control profile.- Enabling application profile.- Select application Overrides signature by selecting '+ Create New'.
- Then, Select 'SSL_TLSv1.0 and SSL_TLSv1.1' signature select 'Ok' and set action as 'Block'.
- Use this application profile in the IPv4 policy to block TLS 1.0 & 1.1 Version traffic.
Go to Log & report -> Application Control -> Check Logs.