Help
FortiWeb
A FortiWeb can be configured to join a Security Fabric through the root or downstream FortiGate.
yitoo_FTNT
Staff
Staff

Created on ‎09-17-2024 06:13 AM

Article Id 341886

Technical Tip: Disable TLS 1.0 and 1.1 in FortiWeb Reverse Proxy mode

Description

 

This article describes how to disable TLS 1.0 and TLS 1.1 in reverse proxy mode.

 

Scope

 

FortiWeb.

 

Solution

 

In a Reverse Proxy, it is possible to disable TLS 1.0 and TLS 1.1 in the server policy and Server pool.

 

To disable TLS 1.0 and TLS 1.1 in the server policy, follow these steps:

 

  1. Go to Server-policy -> Advanced SSL setting -> SSL connection settings.
  2. Disable TLS 1.0 and 1.1.

DISABLE in SERVER-policy.png

 

To disable TLS 1.0 and TLS 1.1 in the Server -> Server pool, follow these steps:

 

  1. Select the Server pool for which it is desired to disable TLS 1.0 and TLS 1.1.
  2. Edit the Server-pool rule.
  3. Under Advanced SSL setting -> SSL connection settings, disable TLS 1.0 and 1.1. This setting is only visible when enabling SSL in the server-pool.
                                                                      

DISABLE in SERVER-pool.png

242
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.