Support Forum
The Forums are a place to find answers on a range of Fortinet products from peers and product experts.
FortiLearn
New Contributor

Can IPS detect if TLS 1.0 connections are used?

Hi,

 

I have seen on fortiguard that there are a lot of TLS signatures available.

So far I have find some who can detect older TLS versions (1.0/1.1) which should not be used anymore.

 

Has somebody experience if it is possible to detect old TLS versions by IPS?

 

Thank you for your feedback.

1 REPLY 1
kphed
New Contributor III

Hello,

 

Did you ever find an answer to this? Some customers we've upgraded to v6.2.9 are reporting they can access web sites that are supposed to be blocked on Internet Explorer.  However, the same web sites are blocked when Chrome/Mozilla/Edge are used.  I am suspecting it is related to TLS 1.0 no longer supported/inspected but I would like to verify prior to making any recommendations.

Labels
Top Kudoed Authors