How can I disable TLS 1.0

I am still running EE 2.5 and I need to disable TLS 1.0. I can do this on my Web Firewall in front of the web server but when I do, I start getting 500 errors on some pages that EE serves. So will an update to EE to 3.0 or higher fix this? Or is there somewhere that I can force TLS 1.0 to stop being used? Or is there something else I am missing? Sorry for all the questions, I am not a EE developer and live on the network side of things.