AnsweredAssumed Answered

nginx disable ciphersuite for CEM monitoring

Question asked by afiorentini on Apr 10, 2017
Latest reply on Apr 12, 2017 by afiorentini

Hi Community

 

Actually I have a  problem with web application CEM analysis because the SSL traffic have an unknown cipher suite:

 

Tim logs:

Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslprint: Unknown CipherSuite - 49200
Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslinterface: network_process_packet: error 10 (unsupported ciphersuite), conn 1056666, packet 74631872, [52.42.22.59]:52252->[207.79.208.59]:443; ignoring further data

 

When I convert (49200) to hex representation, I have 0xC030 cipher (ECDHE_RSA_WITH_AES_256_GCM_SHA384).

 

But i don't know how to set ECDHE_RSA_WITH_AES_256_GCM_SHA384 exclusion for NGINX webserver.

 

Someone who has made this configuration ?

 

               Regards

 

Aldo

                   

 

Outcomes