Child pages
  • Cisco ASA5500 series SSL configuration
Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

Version 1 Current »

After the recent SSL vulnerabilities, I locked down the SSL configuration of our web servers, so that only TLS 1.0 and better are offered.

However, our Cisco ASA5505 box also runs HTTPS, and it's defaults are to offer SSLv3 and TLS 1.0.

Easy enough to fix that:

 

ssl server-version tlsv1-only
ssl client-version tlsv1-only
  • No labels