You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In the **TLS Cipher Suites for HAProxy** field, specify the TLS cipher suites to use in HAProxy for TLS handshakes between HAProxy and its clients such as load balancers and Gorouter. Use an ordered, colon-delimited list of TLS cipher suites in the OpenSSL format. The recommended setting: `DHE-RSA-AES128-GCM-SHA256:DHE-RSA-AES256-GCM-SHA384:ECDHE-RSA-AES128-GCM-SHA256:ECDHE-RSA-AES256-GCM-SHA384`
<br> Operators should verify that the ciphers are supported by any clients or downstream components that will initiate TLS handshakes with the HAProxy.
Verify that whatever clients are participating in the TLS handshake with HAProxy have at least one cipher suite in common with HAProxy.
<p class="note"><strong>Note</strong>: Specify cipher suites that are supported by the versions configured in the <b>Minimum version of TLS supported by HAProxy and Router</b> field.</p>