cloudflare · RebeccaTamachiro · Oct 24, 2025 · Oct 7, 2025 · Oct 24, 2025 · Oct 24, 2025
@@ -14,9 +14,13 @@ If you encounter issues with edge certificate cipher suites, refer to the follow
 
 ## Compatibility with Minimum TLS Version
 
-When you adjust the setting used for your domain's [Minimum TLS Version](/ssl/edge-certificates/additional-options/minimum-tls/), your domain only allows HTTPS connections using that TLS protocol version.
+When you adjust the setting used for your domain's [Minimum TLS Version](/ssl/edge-certificates/additional-options/minimum-tls/), your domain only allows HTTPS connections using that TLS protocol version. As explained in [About cipher suites](/ssl/edge-certificates/additional-options/cipher-suites/#related-ssltls-settings), although configured independently, cipher suites and TLS versions are closely related.
 
-This setting can cause issues if you are not supporting TLS 1.2 ciphers on your domain. If you experience issues, review your domain's [Minimum TLS Version](/ssl/edge-certificates/additional-options/minimum-tls/) setting and Cloudflare's [supported ciphers list](/ssl/edge-certificates/additional-options/cipher-suites/supported-cipher-suites/).
+Minimum TLS Version can cause issues if you are not supporting TLS 1.2 ciphers on your domain. If you experience issues, review your domain's [Minimum TLS Version](/ssl/edge-certificates/additional-options/minimum-tls/) setting and Cloudflare's [supported ciphers list](/ssl/edge-certificates/additional-options/cipher-suites/supported-cipher-suites/).
+
+### Testing Minimum TLS version with curl
+
+<Render file="test-tls-version" product="ssl" />
 
 ## Compatibility with certificate encryption
 

@@ -5,7 +5,7 @@ sidebar:
   order: 13
 ---
 
-import { FeatureTable, TabItem, Tabs, APIRequest } from "~/components";
+import { FeatureTable, TabItem, Tabs, APIRequest, Render } from "~/components";
 
 Minimum TLS Version only allows HTTPS connections from visitors that support the selected TLS protocol version or newer.
 
@@ -99,14 +99,4 @@ If you are a SaaS provider looking to configure minimum TLS version for your cus
 
 ## Test supported TLS versions
 
-To test supported TLS versions, attempt a request to your website or application while specifying a TLS version.
-
-For example, use a `curl` command to test TLS 1.1 (replace `www.example.com` with your Cloudflare domain and hostname):
-
-```sh
-curl https://www.example.com -svo /dev/null --tls-max 1.1
-```
-
-If the TLS version you are testing is blocked by Cloudflare, the TLS handshake is not completed and returns an error:
-
-`* error:1400442E:SSL routines:CONNECT_CR_SRVR_HELLO:tlsv1 alert`
+<Render file="test-tls-version" product="ssl" />
@@ -0,0 +1,20 @@
+---
+{}
+
+---
+
+To test supported TLS versions, attempt a request to your website or application while specifying a TLS version.
+
+For example, to test TLS 1.1, use the `curl` command below. Replace `www.example.com` with your Cloudflare domain and hostname.
+
+```sh
+curl https://www.example.com -svo /dev/null --tls-max 1.1
+```
+
+If the TLS version you are testing is blocked by Cloudflare, the TLS handshake is not completed and returns an error:
+
+`* error:1400442E:SSL routines:CONNECT_CR_SRVR_HELLO:tlsv1 alert`
+
+:::note
+Local VPN or a device security client may prevent insecure connections using legacy protocols like TLS 1.0. Make sure to disable such network or security client before running the test on your device.
+:::