https://live.paloaltonetworks.com/t5/general-topics/regarding-tls-1-0-amp-1-1/m-p/286189#M76554 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/105869">@Ayesha_Shaikh</a>&nbsp;You can create a custom threat signature, which can match on the TLS version and can log or block traffic.&nbsp;</P><P>It is explained in this post:</P><P>&nbsp;</P><P><A href="https://live.paloaltonetworks.com/t5/Custom-Signatures/Detecting-TLS-1-0-and-TLS-1-1-Protocol/m-p/192889#M223" target="_blank">https://live.paloaltonetworks.com/t5/Custom-Signatures/Detecting-TLS-1-0-and-TLS-1-1-Protocol/m-p/192889#M223</A></P><P>&nbsp;</P><P>&nbsp;</P> Mon, 02 Sep 2019 12:30:03 GMT BatD 2019-09-02T12:30:03Z https://live.paloaltonetworks.com/t5/general-topics/regarding-tls-1-0-amp-1-1/m-p/286174#M76550 <P>Hi Everyone,</P><P>&nbsp;</P><P>Can someone suggest on how can we&nbsp;detect&nbsp;TLS 1.0 &amp; 1.1 traffic in Palo Alto ?</P><P>&nbsp;</P><P>Thank you.</P> Mon, 02 Sep 2019 10:49:41 GMT https://live.paloaltonetworks.com/t5/general-topics/regarding-tls-1-0-amp-1-1/m-p/286174#M76550 Ayesha_Shaikh 2019-09-02T10:49:41Z https://live.paloaltonetworks.com/t5/general-topics/regarding-tls-1-0-amp-1-1/m-p/286189#M76554 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/105869">@Ayesha_Shaikh</a>&nbsp;You can create a custom threat signature, which can match on the TLS version and can log or block traffic.&nbsp;</P><P>It is explained in this post:</P><P>&nbsp;</P><P><A href="https://live.paloaltonetworks.com/t5/Custom-Signatures/Detecting-TLS-1-0-and-TLS-1-1-Protocol/m-p/192889#M223" target="_blank">https://live.paloaltonetworks.com/t5/Custom-Signatures/Detecting-TLS-1-0-and-TLS-1-1-Protocol/m-p/192889#M223</A></P><P>&nbsp;</P><P>&nbsp;</P> Mon, 02 Sep 2019 12:30:03 GMT https://live.paloaltonetworks.com/t5/general-topics/regarding-tls-1-0-amp-1-1/m-p/286189#M76554 BatD 2019-09-02T12:30:03Z