Specify SSL Ciphers for Backend

notreallyanengineer · December 1, 2022, 9:35pm

Is it possible to specify to allow different ciphers on a ‘per backend’ basis? I don’t want this configured globally.

I am trying to convert a f5 server-ssl profile:

Example:
serverserver1 10.0.1.3:443 check ssl ca-file/etc/ssl/certs/ca.pem

Can I specify ciphers here?

lukastribus · December 1, 2022, 10:10pm

Yes, use ciphers and ciphersuites configuration keyword.

Refer to the documentation for more information:

Topic		Replies	Views
Per backend cipher suites Help!	4	598	March 25, 2021
Create SSL connection to backend Help!	1	257	November 29, 2022
Backend SSL usage, how? Help!	2	308	February 15, 2022
Strange cipher issue Help!	4	2309	April 29, 2021
Trying to install SSL Cert for use with HAPROXY. No luck Help!	10	9924	January 7, 2019