This is a follow up to #26307.

We should add automated tests for TLS that make sure that if we set TLS 1.3 as the minimum that TLS 1.2 connections will be refused. We can use the min and max versions with reqwest to make those connections. Currently all of our tests are set to use TLS 1.2 as the minimum version so we only need to test that TLS 1.2 fails on a 1.3 only setting.