AnsweredAssumed Answered

nginx disable ciphersuite for CEM monitoring

Question asked by afiorentini on Apr 10, 2017
Latest reply on Apr 12, 2017 by afiorentini

Hi Community


Actually I have a  problem with web application CEM analysis because the SSL traffic have an unknown cipher suite:


Tim logs:

Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslprint: Unknown CipherSuite - 49200
Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslinterface: network_process_packet: error 10 (unsupported ciphersuite), conn 1056666, packet 74631872, []:52252->[]:443; ignoring further data


When I convert (49200) to hex representation, I have 0xC030 cipher (ECDHE_RSA_WITH_AES_256_GCM_SHA384).


But i don't know how to set ECDHE_RSA_WITH_AES_256_GCM_SHA384 exclusion for NGINX webserver.


Someone who has made this configuration ?