Actually I have a problem with web application CEM analysis because the SSL traffic have an unknown cipher suite:
Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslprint: Unknown CipherSuite - 49200Mon Apr 10 21:38:00 2017 22637 ! Warning: w15: sslinterface: network_process_packet: error 10 (unsupported ciphersuite), conn 1056666, packet 74631872, [22.214.171.124]:52252->[126.96.36.199]:443; ignoring further data
When I convert (49200) to hex representation, I have 0xC030 cipher (ECDHE_RSA_WITH_AES_256_GCM_SHA384).
But i don't know how to set ECDHE_RSA_WITH_AES_256_GCM_SHA384 exclusion for NGINX webserver.
Someone who has made this configuration ?
This reference could be helpful:
NGINX + HTTPS 101: The Basics & Getting Started - NGINX
change this line in ngnix.conf
Since specific answers on next steps were provided, this was marked as answered. You may ask follow-up questions as needed
I review your recommendation about add to nginx.conf:
But the problem with this directive is the support for Diffie Hellman "DHE" cipher (doesn't supported for TIM).
I would like to remove only ECDHE_RSA_WITH_AES_256_GCM_SHA384 directive but leaving the rest as it is.
I'ts possible ?
My reading on that document is that you can add or remove specific SSL cipher suites. So I believe teh answer is yes.