diff --git a/src/istio/chart/templates/gateway.yaml b/src/istio/chart/templates/gateway.yaml
index ea2d7c28a..921fb6cec 100644
--- a/src/istio/chart/templates/gateway.yaml
+++ b/src/istio/chart/templates/gateway.yaml
@@ -32,7 +32,7 @@ spec:
         mode: {{ $server.mode }}
         {{- if ne $server.mode "PASSTHROUGH" }}
         credentialName: gateway-tls
-        minProtocolVersion: TLSV1_3
+        minProtocolVersion: {{ if .Values.tls.supportTLSV1_2 }}TLSV1_2{{ else }}TLSV1_3{{ end }}
         {{- end }}
     {{ end }}
 {{ end }}
diff --git a/src/istio/chart/values.yaml b/src/istio/chart/values.yaml
index cf564b049..cde8e5f2e 100644
--- a/src/istio/chart/values.yaml
+++ b/src/istio/chart/values.yaml
@@ -5,6 +5,9 @@ name: change-me
 domain: "###ZARF_VAR_DOMAIN###"
 
 # tls:
+#   # Set to true to support TLS 1.2, false for TLS 1.3 only
+#   supportTLSV1_2: false
+
 #   # The TLS certificate for the gateway, if not in 'PASSTHROUGH' mode (base64 encoded)
 #   cert: ""