In Edge Security Acceleration (ESA), the All Cipher Suites (Default) and Enhanced Cipher Suite groups support different algorithms.
All cipher suites (default)
|
Suite name (IANA) |
Suite name (OpenSSL) |
Minimum supported protocol |
|
TLS_RSA_WITH_AES_128_CBC_SHA |
AES128-SHA |
TLS 1.0 |
|
TLS_RSA_WITH_AES_128_GCM_SHA256 |
AES128-GCM-SHA256 |
TLS 1.2 |
|
TLS_RSA_WITH_AES_256_CBC_SHA |
AES256-SHA |
TLS 1.0 |
|
TLS_RSA_WITH_AES_256_GCM_SHA384 |
AES256-GCM-SHA384 |
TLS 1.2 |
|
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256 |
ECDHE-ECDSA-AES128-GCM-SHA256 |
TLS 1.2 |
|
TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA |
ECDHE-ECDSA-AES128-SHA |
TLS 1.0 |
|
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384 |
ECDHE-ECDSA-AES256-GCM-SHA384 |
TLS 1.2 |
|
TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA |
ECDHE-ECDSA-AES256-SHA |
TLS 1.0 |
|
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256 |
ECDHE-ECDSA-CHACHA20-POLY1305 |
TLS 1.2 |
|
TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA |
ECDHE-RSA-AES128-SHA |
TLS 1.0 |
|
TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA |
ECDHE-RSA-AES256-SHA |
TLS 1.0 |
|
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256 |
ECDHE-RSA-AES128-GCM-SHA256 |
TLS 1.2 |
|
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384 |
ECDHE-RSA-AES256-GCM-SHA384 |
TLS 1.2 |
|
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256 |
ECDHE-RSA-CHACHA20-POLY1305 |
TLS 1.2 |
|
TLS_AES_128_GCM_SHA256 |
TLS_AES_128_GCM_SHA256 |
TLS 1.3 |
|
TLS_AES_256_GCM_SHA384 |
TLS_AES_256_GCM_SHA384 |
TLS 1.3 |
|
TLS_CHACHA20_POLY1305_SHA256 |
TLS_CHACHA20_POLY1305_SHA256 |
TLS 1.3 |
Encryption algorithms supported by the enhanced cipher suite
-
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
-
TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384
-
TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305_SHA256
-
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
-
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
-
TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305_SHA256
-
TLS_AES_128_GCM_SHA256
-
TLS_AES_256_GCM_SHA384
-
TLS_CHACHA20_POLY1305_SHA256