SSL/Ciphers
server/ssl/ciphers[]
Specifies the ciphers and cipher suites which will be permitted for all secure communications.
The following tables show the list of available ciphers.
Supported Cipher Names
| Name |
|---|
| TLS_DHE_PSK_WITH_AES_128_CCM_8 |
| TLS_DHE_PSK_WITH_AES_128_CCM |
| TLS_DHE_PSK_WITH_AES_256_CCM_8 |
| TLS_DHE_PSK_WITH_AES_256_CCM |
| TLS_DHE_RSA_WITH_AES_128_CCM_8 |
| TLS_DHE_RSA_WITH_AES_128_CCM |
| TLS_DHE_RSA_WITH_AES_128_GCM_SHA256 |
| TLS_DHE_RSA_WITH_AES_256_CCM_8 |
| TLS_DHE_RSA_WITH_AES_256_CCM |
| TLS_DHE_RSA_WITH_AES_256_GCM_SHA384 |
| TLS_ECDHE_ECDSA_WITH_3DES_EDE_CBC_SHA |
| TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256 |
| TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA |
| TLS_ECDHE_ECDSA_WITH_AES_128_CCM_8 |
| TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 |
| TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384 |
| TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA |
| TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 |
| TLS_ECDHE_ECDSA_WITH_RC4_128_SHA |
| TLS_ECDHE_RSA_WITH_3DES_EDE_CBC_SHA |
| TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256 |
| TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA |
| TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
| TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384 |
| TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA |
| TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 |
| TLS_ECDHE_RSA_WITH_RC4_128_SHA |
| TLS_PSK_WITH_AES_128_CCM_8 |
| TLS_PSK_WITH_AES_128_CCM |
| TLS_PSK_WITH_AES_256_CCM_8 |
| TLS_PSK_WITH_AES_256_CCM |
| TLS_RSA_EXPORT1024_WITH_DES_CBC_SHA |
| TLS_RSA_EXPORT1024_WITH_RC4_56_SHA |
| TLS_RSA_EXPORT_WITH_RC2_CBC_40_MD5 |
| TLS_RSA_EXPORT_WITH_RC4_40_MD5 |
| TLS_RSA_WITH_3DES_EDE_CBC_SHA |
| TLS_RSA_WITH_AES_128_CBC_SHA256 |
| TLS_RSA_WITH_AES_128_CBC_SHA |
| TLS_RSA_WITH_AES_128_CCM_8 |
| TLS_RSA_WITH_AES_128_CCM |
| TLS_RSA_WITH_AES_128_GCM_SHA256 |
| TLS_RSA_WITH_AES_256_CBC_SHA256 |
| TLS_RSA_WITH_AES_256_CBC_SHA |
| TLS_RSA_WITH_AES_256_CCM_8 |
| TLS_RSA_WITH_AES_256_CCM |
| TLS_RSA_WITH_AES_256_GCM_SHA384 |
| TLS_RSA_WITH_DES_CBC_SHA |
| TLS_RSA_WITH_NULL_MD5 |
| TLS_RSA_WITH_NULL_NULL |
| TLS_RSA_WITH_NULL_SHA |
| TLS_RSA_WITH_RC4_128_MD5 |
| TLS_RSA_WITH_RC4_128_SHA |
| TLS_RSA_WITH_NULL_SHA256 |
| TLS_ECDHE_ECDSA_WITH_NULL_SHA |
| TLS_ECDHE_RSA_WITH_NULL_SHA |
Supported TLSv1.3 Cipher Names
| Name |
|---|
| TLS_AES_128_GCM_SHA256 |
| TLS_AES_256_GCM_SHA384 |
| TLS_CHACHA20_POLY1305_SHA256 |
| TLS_AES_128_CCM_SHA256 |
| TLS_AES_128_CCM_8_SHA256 |
Properties
| Name | Type | Constraints | Description |
|---|---|---|---|
| ssl/ciphers | Array of string | The name(s) of the ciphers and cipher suites which will be permitted. For a list of valid ciphers, see: - Supported Cipher Names - Supported TLSv1.3 Cipher Names |
Example
server:
ssl:
ciphers:
- TLS_PSK_WITH_AES_256_CCM
- TLS_AES_128_CCM_8_SHA256
Updated almost 2 years ago